CVE-2015-2575 – mysql:mysql-connector-java

Package

Manager: maven
Name: mysql:mysql-connector-java
Vulnerable Version: >=0 <5.1.35

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00438 pctl0.62208

Details

Improper Access Control in MySQL Connectors Java Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.

Metadata

Created: 2022-05-17T00:25:07Z
Modified: 2022-07-06T20:20:54Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gc43-g62c-99g2/GHSA-gc43-g62c-99g2.json
CWE IDs: ["CWE-284"]
Alternative ID: GHSA-gc43-g62c-99g2
Finding: F039
Auto approve: 1