CVE-2016-5590

Published: Jan 27, 2017Modified: May 13, 2026

7.2

Vector

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.2 / Impact: 5.9

Source: NVD

Description

Vulnerability in the MySQL Enterprise Monitor component of Oracle MySQL (subcomponent: Monitoring: Agent). Supported versions that are affected are 3.1.3.7856 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via TLS to compromise MySQL Enterprise Monitor. Successful attacks of this vulnerability can result in takeover of MySQL Enterprise Monitor. CVSS v3.0 Base Score 7.2 (Confidentiality, Integrity and Availability impacts).

Affected (1)

Products: Oracle: Mysql Enterprise Monitor

1 product

Mysql Enterprise Monitor

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Mysql Enterprise Monitor	Up to 3.1.3.7856

References (6)

http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.securityfocus.com/bid/95542

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037640

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/95542

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037640

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.