CVE-2018-2598

State: PUBLISHED · Published: 2018-07-18 · Updated: 2024-10-02 · Assigner: oracle

Description

Vulnerability in the MySQL Workbench component of Oracle MySQL (subcomponent: Workbench: Security: Encryption). Supported versions that are affected are 6.3.10 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Workbench. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Workbench accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

CWE

(none)

Affected

Oracle Corporation / MySQL Workbench — v=6.3.10 and earlier [affected]

CVSS

(none)

References

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html x_refsource_CONFIRM
http://www.securitytracker.com/id/1041294 vdb-entry, x_refsource_SECTRACK
http://www.securityfocus.com/bid/104787 vdb-entry, x_refsource_BID
https://security.netapp.com/advisory/ntap-20180726-0002/ x_refsource_CONFIRM

Source

cvelistV5-main/cves/2018/2xxx/CVE-2018-2598.json