CVE-2016-3477
HIGH8.1EPSS 0.11%mysql-5.5 - security update
Published: 7/29/2016Modified: 11/19/2025
Also known as:DSA-3624-1ALPINE-CVE-2016-3477DEBIAN-CVE-2016-3477DEBIAN-CVE-2016-3521DEBIAN-CVE-2016-3615DEBIAN-CVE-2016-5440
Description
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser.
Affected packages (4)
- Alpine/mariadbfrom 0, < 5.5.51-r0
- Debian/mariadb-10.0from 0, < 10.0.26-0+deb8u1
- Debian/mysql-5.5from 0, < 5.5.50-0+deb7u1
- Debian/mysql-5.5from 0, < 5.5.50-0+deb8u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.1 | CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H |