CVE-2018-3200
First published: Wed Oct 17 2018(Updated: )
Last updated 24 July 2024
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/mysql | <5.7.24 | 5.7.24 |
| redhat/mysql | <8.0.13 | 8.0.13 |
| redhat/mariadb | <10.3.11 | 10.3.11 |
| redhat/mariadb | <10.2.19 | 10.2.19 |
| debian/mysql-5.5 | ||
| debian/mysql-5.7 | ||
| Oracle MySQL | >=5.7.0<=5.7.23 | |
| Oracle MySQL | >=8.0.0<=8.0.12 | |
| NetApp Active IQ Unified Manager | >=7.3 | |
| NetApp Active IQ Unified Manager for VMware vSphere | >=9.5 | |
| NetApp OnCommand Insight | ||
| NetApp OnCommand Workflow Automation | ||
| NetApp SnapCenter | ||
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =18.04 | |
| Ubuntu | =18.10 | |
| MariaDB | >=10.2.0<10.2.19 | |
| MariaDB | >=10.3.0<10.3.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
- http://www.securityfocus.com/bid/105594
- http://www.securitytracker.com/id/1041888
- https://security.netapp.com/advisory/ntap-20181018-0002/
- https://usn.ubuntu.com/3799-1/
- https://access.redhat.com/errata/RHSA-2018:3655
- https://access.redhat.com/errata/RHSA-2019:1258
- https://security.gentoo.org/glsa/201908-24
- https://launchpad.net/bugs/cve/CVE-2018-3200
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1640559
- https://bugzilla.redhat.com/show_bug.cgi?id=1640308
- https://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html#AppendixMSQL
- https://security-tracker.debian.org/tracker/CVE-2018-3200
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3200
- https://nvd.nist.gov/vuln/detail/CVE-2018-3200
- https://ubuntu.com/security/CVE-2018-3200
Frequently Asked Questions
What is the vulnerability ID for this MySQL Server vulnerability?
The vulnerability ID for this MySQL Server vulnerability is CVE-2018-3200.
Which versions of MySQL Server are affected by this vulnerability?
The affected versions of MySQL Server are 5.7.23 and prior and 8.0.12 and prior.
How severe is the MySQL Server vulnerability?
The severity of the MySQL Server vulnerability is medium, with a severity value of 4.9.
How can a high privileged attacker exploit this vulnerability?
A high privileged attacker with network access via multiple protocols can exploit this vulnerability to compromise MySQL Server.
Where can I find more information about this MySQL Server vulnerability?
You can find more information about this MySQL Server vulnerability at the following references: [http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html](http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html), [http://www.securityfocus.com/bid/105594](http://www.securityfocus.com/bid/105594), [http://www.securitytracker.com/id/1041888](http://www.securitytracker.com/id/1041888).
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/severity
- agent/remedy
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-3200
- agent/software-canonical-lookup
- collector/security-tracker-debian
- source/Debian
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- package-manager/redhat
- package-manager/debian
- vendor/oracle
- canonical/oracle mysql
- version/oracle mysql/5.7.0
- version/oracle mysql/5.7.23
- version/oracle mysql/8.0.0
- version/oracle mysql/8.0.12
- vendor/netapp
- canonical/netapp active iq unified manager
- version/netapp active iq unified manager/7.3
- canonical/netapp active iq unified manager for vmware vsphere
- version/netapp active iq unified manager for vmware vsphere/9.5
- canonical/netapp oncommand insight
- canonical/netapp oncommand workflow automation
- canonical/netapp snapcenter
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/18.04
- version/ubuntu/18.10
- vendor/mariadb
- canonical/mariadb
- version/mariadb/10.2.0
- version/mariadb/10.3.0