VYPR
Get started
← All advisories
Medium severity6.5NVD Advisory· Published Aug 8, 2017· Updated May 13, 2026

CVE-2017-3633

CVE-2017-3633

Description

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Memcached to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H).

Affected products

10
  • Oracle Corporation/Communications Policy Management7 versions
    cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:oracle:communications_policy_management:*:*:*:*:*:*:*:*range: >=12.0,<=12.0.0.4.0
    • cpe:2.3:a:oracle:communications_policy_management:12.3:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:communications_policy_management:12.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:communications_policy_management:12.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:communications_policy_management:12.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:communications_policy_management:12.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:communications_policy_management:12.5.1:*:*:*:*:*:*:*
  • Oracle Corporation/MySQL
    cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
    Range: >=5.6.0,<=5.6.36
  • Oracle Corporation/Communications Policy Managementv5
    Range: 12.x
  • Oracle Corporation/MySQL Serverv5
    Range: 5.6.36 and earlier

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.