CVE-2017-3306

Name of the Vulnerable Software and Affected Versions MySQL Enterprise Monitor versions 3.1.6.8003 and earlier MySQL Enterprise Monitor versions 3.2.1182 and earlier MySQL Enterprise Monitor versions 3.3.2.1162 and earlier

Description The issue allows a high privileged attacker with network access via multiple protocols to compromise MySQL Enterprise Monitor. Successful attacks require human interaction from a person other than the attacker. This can result in unauthorized creation, deletion, or modification access to critical data or all MySQL Enterprise Monitor accessible data, as well as unauthorized access to critical data or complete access to all MySQL Enterprise Monitor accessible data. Additionally, it can lead to a partial denial of service (partial DOS) of MySQL Enterprise Monitor.

Recommendations For versions 3.1.6.8003 and earlier, update to a version later than 3.1.6.8003 to resolve the issue. For versions 3.2.1182 and earlier, update to a version later than 3.2.1182 to resolve the issue. For versions 3.3.2.1162 and earlier, update to a version later than 3.3.2.1162 to resolve the issue.