Oracle MySQL Server CVE-2018-3071 Remote Security Vulnerability

Bugtraq ID:	104784
Class:	Unknown
CVE:	CVE-2018-3071
Remote:	Yes
Local:	No
Published:	Jul 17 2018 12:00AM
Updated:	Jul 17 2018 12:00AM
Credit:	Oracle
Vulnerable:	Oracle MySQL Server 5.7.22 Oracle MySQL Server 5.7.21 Oracle MySQL Server 5.7.20 Oracle MySQL Server 5.7.19 Oracle MySQL Server 5.7.18 Oracle MySQL Server 5.7.17 Oracle MySQL Server 5.7.16 Oracle MySQL Server 5.7.15 Oracle MySQL Server 5.7.12 Oracle MySQL Server 5.7
Not Vulnerable:

Oracle MySQL Server CVE-2018-3071 Remote Security Vulnerability

Oracle MySQL Server is prone to a remote security vulnerability in 'Audit Log' component.

The vulnerability can be exploited over the 'MySQL' protocol.

This vulnerability affects the following supported versions:
5.7.22 and prior

Oracle MySQL Server CVE-2018-3071 Remote Security Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Oracle MySQL Server CVE-2018-3071 Remote Security Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.