CVE-2018-3079

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
References
Link Resource
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html Patch Vendor Advisory
http://www.securityfocus.com/bid/104772 Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1041294 Broken Link Third Party Advisory VDB Entry
https://security.netapp.com/advisory/ntap-20180726-0002/ Patch Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:storage_automation_store:-:*:*:*:*:*:*:*

History

31 May 2023, 13:40

Type Values Removed Values Added
References (BID) http://www.securityfocus.com/bid/104772 - Third Party Advisory, VDB Entry (BID) http://www.securityfocus.com/bid/104772 - Broken Link, Third Party Advisory, VDB Entry
References (SECTRACK) http://www.securitytracker.com/id/1041294 - Third Party Advisory, VDB Entry (SECTRACK) http://www.securitytracker.com/id/1041294 - Broken Link, Third Party Advisory, VDB Entry

Information

Published : 2018-07-18 13:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-3079

Mitre link : CVE-2018-3079

CVE.ORG link : CVE-2018-3079


JSON object : View

Products Affected

netapp

  • storage_automation_store
  • oncommand_insight
  • snapcenter
  • oncommand_workflow_automation

oracle

  • mysql