CVE-2017-3523: Incorrect Privilege Assignment

April 24, 2017 (updated October 3, 2019)

Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. While the vulnerability is in MySQL Connectors, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of MySQL Connectors.

References

www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
www.securityfocus.com/bid/97982
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3523
nvd.nist.gov/vuln/detail/CVE-2017-3523

Detect and mitigate CVE-2017-3523 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →