Improper access control vulnerability in MySQL Cluster via multiple protocols - CVE-2017-3304ID: oval:org.secpod.oval:def:49911 | Date: (C)2018-12-18 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with MySQL Cluster 7.2.27 and earlier, 7.3.16 and earlier, 7.4.14 and earlier or 7.5.5 and earlier and is prone to an improper access control vulnerability. A flaw is present in the application, which fails to handle the Cluster DD component. Successful exploitation allows attackers to update, insert or delete access to some of MySQL Cluster accessible data and unauthorized ability to cause a partial denial of service.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 8.1 |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2012 R2 |