Description

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.44 and prior and 5.7.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).

Remediation

References

CVE-2019-2730

Related Vulnerabilities

MySQL CVE-2016-0600 Vulnerability (CVE-2016-0600)

Django Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-31542)

MySQL CVE-2017-3243 Vulnerability (CVE-2017-3243)

MediaWiki Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-35624)

WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (4.0.2)

Severity

Low

Classification

CVE-2019-2730 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities