CVE-2016-5590

State: PUBLISHED · Published: 2017-01-27 · Updated: 2024-10-09 · Assigner: oracle

Description

Vulnerability in the MySQL Enterprise Monitor component of Oracle MySQL (subcomponent: Monitoring: Agent). Supported versions that are affected are 3.1.3.7856 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via TLS to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. CVSS v3.0 Base Score 7.2 (Confidentiality, Integrity and Availability impacts).

CWE

(none)

Affected

Oracle / MySQL Enterprise Monitor — v=3.1.3.7856 and earlier [affected]

CVSS

(none)

References

http://www.securityfocus.com/bid/95542 vdb-entry, x_refsource_BID
http://www.securitytracker.com/id/1037640 vdb-entry, x_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html x_refsource_CONFIRM

Source

cvelistV5-main/cves/2016/5xxx/CVE-2016-5590.json