CVE-2018-3144
First published: Wed Oct 17 2018(Updated: )
Last updated 24 July 2024
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/mysql-5.5 | ||
| debian/mysql-5.7 | ||
| redhat/mysql | <5.7.24 | 5.7.24 |
| redhat/mysql | <8.0.13 | 8.0.13 |
| Oracle MySQL Installer | >=5.7.0<=5.7.23 | |
| Oracle MySQL Installer | >=8.0.0<=8.0.12 | |
| NetApp OnCommand Insight | ||
| NetApp OnCommand Unified Manager for vSphere | >=9.4 | |
| NetApp OnCommand Workflow Automation | ||
| NetApp SnapCenter | ||
| NetApp Storage Automation Store | ||
| All of | ||
| NetApp OnCommand Unified Manager for Windows | >=7.3 | |
| Microsoft Windows | ||
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =18.04 | |
| Ubuntu | =18.10 | |
| NetApp OnCommand Unified Manager for Windows | >=7.3 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/105594
- http://www.securitytracker.com/id/1041888
- https://security.netapp.com/advisory/ntap-20181018-0002/
- https://usn.ubuntu.com/3799-1/
- https://access.redhat.com/errata/RHSA-2018:3655
- https://launchpad.net/bugs/cve/CVE-2018-3144
- https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html#AppendixMSQL
- https://security-tracker.debian.org/tracker/CVE-2018-3144
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1640559
- https://bugzilla.redhat.com/show_bug.cgi?id=1640326
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3144
- https://nvd.nist.gov/vuln/detail/CVE-2018-3144
- https://ubuntu.com/security/CVE-2018-3144
Frequently Asked Questions
What is CVE-2018-3144?
CVE-2018-3144 is a vulnerability in the MySQL Server component of Oracle MySQL that allows an unauthenticated attacker with network access to compromise the availability, integrity, and confidentiality of the affected system.
Which versions of Oracle MySQL are affected by CVE-2018-3144?
The affected versions are 5.7.23 and prior, and 8.0.12 and prior.
How severe is CVE-2018-3144?
CVE-2018-3144 has a severity rating of medium, with a CVSS score of 5.9.
How can an attacker exploit CVE-2018-3144?
An unauthenticated attacker with network access can exploit the vulnerability via multiple protocols to compromise the affected system.
Where can I find more information about CVE-2018-3144?
You can find more information about CVE-2018-3144 in the Oracle Security Advisory and various security websites.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/severity
- agent/remedy
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-3144
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/first-publish-date
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/debian
- package-manager/redhat
- vendor/oracle
- canonical/oracle mysql installer
- version/oracle mysql installer/5.7.0
- version/oracle mysql installer/5.7.23
- version/oracle mysql installer/8.0.0
- version/oracle mysql installer/8.0.12
- vendor/netapp
- canonical/netapp oncommand insight
- canonical/netapp oncommand unified manager for vsphere
- version/netapp oncommand unified manager for vsphere/9.4
- canonical/netapp oncommand workflow automation
- canonical/netapp snapcenter
- canonical/netapp storage automation store
- canonical/netapp oncommand unified manager for windows
- version/netapp oncommand unified manager for windows/7.3
- vendor/microsoft
- canonical/microsoft windows
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/18.04
- version/ubuntu/18.10