CX: CVE-2017-3589 in Maven-mysql:mysql-connector-java and 5.1.26 @ JavaVulnerableLab.refs/heads/master

**Description**

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

**LOW Vulnerable Package** issue exists @ **mysql:mysql-connector-java** in branch **refs/heads/master**

**Vulnerability ID:** CVE-2017-3589

**Package Name:** mysql:mysql-connector-java

**Severity:** LOW

**CVSS Score:** 3.3

**Publish Date:** 2017-04-24T19:59:00

**Current Package Version:** 5.1.26

**Remediation Upgrade Recommendation:** 8.0.27

[Link To SCA](https://sca.scacheckmarx.com/#/projects/43c66723-1c23-4989-9e51-bfa32766271e/reports/e3c3068d-3289-466b-aa0f-b9c2cf00b4ea/vulnerabilities/CVE-2017-3589%3AMaven-mysql%3Amysql-connector-java-5.1.26/vulnerabilityDetails/vulnerabilities/CVE-2017-3589%3AMaven-mysql%3Amysql-connector-java-5.1.26/vulnerabilityDetails)

[Reference &ndash; NVD link](https://nvd.nist.gov/vuln/detail/CVE-2017-3589)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CX: CVE-2017-3589 in Maven-mysql:mysql-connector-java and 5.1.26 @ JavaVulnerableLab.refs/heads/master #39

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

CX: CVE-2017-3589 in Maven-mysql:mysql-connector-java and 5.1.26 @ JavaVulnerableLab.refs/heads/master #39

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions