CVE-2016-0642

MEDIUM

Oracle MySQL <5.5.49 - SQL Injection

Title source: llm

Description

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated.

References (17)

Scores

CVSS v3 4.7
EPSS 0.0038
EPSS Percentile 58.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

Classification

Status draft

Affected Products (38)

oracle/mysql < 5.5.48
suse/linux_enterprise_debuginfo
opensuse/leap
opensuse/opensuse
suse/linux_enterprise_desktop
suse/linux_enterprise_desktop
suse/linux_enterprise_server
suse/linux_enterprise_server
suse/linux_enterprise_server
suse/linux_enterprise_software_development_kit
suse/linux_enterprise_software_development_kit
suse/linux_enterprise_software_development_kit
suse/linux_enterprise_workstation_extension
suse/linux_enterprise_workstation_extension
redhat/enterprise_linux_desktop
... and 23 more

Timeline

Published Apr 21, 2016
Tracked Since Feb 18, 2026