CVE-2017-3635
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-3635
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Connectors. Note: The documentation has also been updated for the correct way to use mysql_stmt_close(). Please see: https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-execute.html, https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-fetch.html, https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-close.html, https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-error.html, https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-errno.html, and https://dev.mysql.com/doc/refman/5.7/en/mysql-stmt-sqlstate.html. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Oracle MySQL Server和MySQL Connectors 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。MySQL Connectors component和MySQL Server component都是其中的组件。MySQL Connectors component是一个服务器组件;MySQL Server component是一个连接使用MySQL的应用程序的驱动组件。 Oracle MySQL中的MySQL Server组件的C API子组件和MySQL Connectors组件的Connector/C子组件存在
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Oracle Corporation | MySQL Server | 5.5.56 and earlier | - |
II. Public POCs for CVE-2017-3635
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-3635
Please Login to view more intelligence information
Same Patch Batch · Oracle Corporation · 2017-08-08 · 239 CVEs total
| CVE-2017-10204 | Oracle VM VirtualBox 安全漏洞 | |
| CVE-2017-10185 | Oracle CRM Technical Foundation 安全漏洞 | |
| CVE-2017-10186 | Oracle iStore 安全漏洞 | |
| CVE-2017-10187 | Oracle VM VirtualBox 安全漏洞 | |
| CVE-2017-10188 | Oracle Hospitality Hotel Mobile 安全漏洞 | |
| CVE-2017-10189 | Oracle Hospitality Suite8 安全漏洞 | |
| CVE-2017-10191 | Oracle Web Analytics 安全漏洞 | |
| CVE-2017-10192 | Oracle iStore 安全漏洞 | |
| CVE-2017-10193 | Oracle Java SE和Java SE Embedded 安全漏洞 | |
| CVE-2017-10195 | Oracle Hospitality Simphony 安全漏洞 | |
| CVE-2017-10196 | Oracle Outside In Technology 安全漏洞 | |
| CVE-2017-10198 | Oracle Java SE、Java SE Embedded和JRockit 安全漏洞 | |
| CVE-2017-10199 | Oracle Learner Pages 安全漏洞 | |
| CVE-2017-10200 | Oracle Hospitality e7 安全漏洞 | |
| CVE-2017-10202 | Oracle Database Server 安全漏洞 | |
| CVE-2017-10215 | Oracle PeopleSoft Enterprise PRTL Interaction Hub 安全漏洞 | |
| CVE-2017-10212 | Oracle Hospitality Suite8 安全漏洞 | |
| CVE-2017-10213 | Oracle Hospitality Suite8 安全漏洞 | |
| CVE-2017-10214 | Oracle Retail Xstore Point of Service 安全漏洞 | |
| CVE-2017-10217 | Oracle Hospitality Guest Access 安全漏洞 |
Showing top 20 of 239 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2017-3635
No comments yet