CVE-2018-2877 is a vulnerability in Oracle Mysql Cluster
Published on April 19, 2018
Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: ndbcluster/plugin). Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Cluster. CVSS 3.0 Base Score 5.0 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H).
Products Associated with CVE-2018-2877
Want to know whenever a new CVE is published for Oracle Mysql Cluster? stack.watch will email you.
Affected Versions
Oracle Corporation MySQL Cluster:- Version 7.2.27 and prior is affected.
- Version 7.3.16 and prior is affected.
- Version 7.4.14 and prior is affected.
- Version 7.5.5 and prior is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.