CVE-2016-3461 - Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earli

CVE-2016-3461

Summary

Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server.

References

Vulnerable Configurations

cpe:2.3:a:oracle:mysql_enterprise_monitor:3.0.25:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_enterprise_monitor:3.0.25:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_enterprise_monitor:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql_enterprise_monitor:3.1.2:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 03-11-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	MULTIPLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:H/Au:M/C:P/I:P/A:P

refmap via4

confirm	http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
misc	https://www.tenable.com/security/research/tra-2016-11
sectrack	1035606

Last major update

03-11-2017 - 01:29

Published

21-04-2016 - 11:00

Last modified

03-11-2017 - 01:29