vulnerability
SUSE: CVE-2017-10155: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Oct 18, 2017 | Oct 28, 2017 | Dec 14, 2017 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Oct 18, 2017
Added
Oct 28, 2017
Modified
Dec 14, 2017
Description
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
Solutions
suse-upgrade-libmysql56client18suse-upgrade-libmysql56client18-32bitsuse-upgrade-libmysql56client18-debuginfosuse-upgrade-libmysql56client18-debuginfo-32bitsuse-upgrade-libmysql56client_r18suse-upgrade-libmysql56client_r18-32bitsuse-upgrade-mysql-community-serversuse-upgrade-mysql-community-server-benchsuse-upgrade-mysql-community-server-bench-debuginfosuse-upgrade-mysql-community-server-clientsuse-upgrade-mysql-community-server-client-debuginfosuse-upgrade-mysql-community-server-debuginfosuse-upgrade-mysql-community-server-debugsourcesuse-upgrade-mysql-community-server-errormessagessuse-upgrade-mysql-community-server-testsuse-upgrade-mysql-community-server-test-debuginfosuse-upgrade-mysql-community-server-toolssuse-upgrade-mysql-community-server-tools-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.