Improper Access Control Affecting mysql:mysql-connector-java package, versions [,5.1.42)
Snyk CVSS
Attack Complexity
Low
Threat Intelligence
EPSS
0.05% (18th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-JAVA-MYSQL-31449
- published 21 May 2017
- disclosed 24 Apr 2017
- credit Unknown
Introduced: 24 Apr 2017
CVE-2017-3589 Open this link in a new tabOverview
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J
). The vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data.