CVE-2017-3468

Name of the Vulnerable Software and Affected Versions Oracle MySQL versions 5.7.17 and earlier

Description The issue is related to insufficient access control in the MySQL Server component of Oracle MySQL, allowing an attacker with network access via multiple protocols to compromise the server. Successful attacks can result in unauthorized update, insert, or delete access to some of the MySQL Server's accessible data. The vulnerability can be exploited by a low-privileged attacker, although it is considered difficult to exploit. The impact of this vulnerability includes the potential for an attacker to cause unauthorized changes to data.

Recommendations For versions 5.7.17 and earlier, update to a version that includes the fix for this issue to prevent unauthorized access and potential data modification. As a temporary workaround, consider restricting network access to the MySQL Server to minimize the risk of exploitation. Restrict access to sensitive data within the MySQL Server to minimize the potential impact of a successful attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.