CVE-2018-3195 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-3195 Interim 1 17 2023-06-02T00:35:25Z current 2021-05-30T14:08:00Z 2023-06-02T00:35:25Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-3195 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SLES for SAP Applications 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 LTSS SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Software Development Kit 11 SP4 libmysql55client18 libmysql55client18-32bit libmysql55client_r18 libmysql55client_r18-32bit libmysql55client_r18-x86 libmysqlclient-devel libmysqlclient15 libmysqlclient15-32bit libmysqlclient_r15 libmysqlclient_r15-32bit libmysqlclient_r15-x86 mysql mysql-client mysql-tools mysql as a component of SLES for SAP Applications 11 SP3 mysql as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata mysql as a component of SUSE Linux Enterprise Server 11 SP3 LTSS mysql as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata libmysql55client18 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client18-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client_r18 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client_r18-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient15 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient15-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysqlclient_r15 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql-client as a component of SUSE Linux Enterprise Server 11 SP4-LTSS mysql-tools as a component of SUSE Linux Enterprise Server 11 SP4-LTSS libmysql55client_r18-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysql55client_r18-x86 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient-devel as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient_r15-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient_r15-x86 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 mysql as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H). CVE-2018-3195 SLES for SAP Applications 11 SP3:mysql SUSE Linux Enterprise Server 11 SP1 for Teradata:mysql SUSE Linux Enterprise Server 11 SP3 LTSS:mysql SUSE Linux Enterprise Server 11 SP3 for Teradata:mysql SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client18 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client18-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client_r18 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysql55client_r18-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient15 SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient15-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:libmysqlclient_r15 SUSE Linux Enterprise Server 11 SP4-LTSS:mysql SUSE Linux Enterprise Server 11 SP4-LTSS:mysql-client SUSE Linux Enterprise Server 11 SP4-LTSS:mysql-tools SUSE Linux Enterprise Software Development Kit 11 SP4:libmysql55client_r18-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:libmysql55client_r18-x86 SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient-devel SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient_r15-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient_r15-x86 SUSE Linux Enterprise Software Development Kit 11 SP4:mysql moderate 5.5 AV:N/AC:L/Au:S/C:N/I:P/A:P 5.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H