CVE-2016-5598

MEDIUM

MySQL Connector <2.1.3 & <2.0.4 - Info Disclosure

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Connector/Python.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/93653
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037050

Scores

CVSS v3 5.6
EPSS 0.0221
EPSS Percentile 80.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-284
Status published
Products (1)
oracle/mysql_connector\/python 2.0.0 - 2.0.4
Published Oct 25, 2016
Tracked Since Feb 18, 2026