CVE-2016-0639

Published: Apr 21, 2016Modified: May 6, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Pluggable Authentication.

Affected (4)

Products: Redhat: Enterprise Linux · Oracle: Mysql

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Mysql	From 5.6.0 to 5.6.29
Oracle Mysql	From 5.7.0 to 5.7.11

References (14)

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html

Source: secalert_us@oracle.com

Mailing ListThird Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-0705.html

Source: secalert_us@oracle.com

Third Party Advisory

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.securityfocus.com/bid/86418

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1035606

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2953-1

Source: secalert_us@oracle.com

Third Party Advisory

http://www.ubuntu.com/usn/USN-2954-1

Source: secalert_us@oracle.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html