CVE-2016-3521
6.5
MEDIUM
CVSS 3.1
EPSS 1.1%
Description
Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types.
How to fix CVE-2016-3521
To remediate CVE-2016-3521, upgrade the affected package to a fixed version below.
- Alpine/mariadb—upgrade to 5.5.51-r0 or later
Is CVE-2016-3521 being exploited?
Low — EPSS is 1.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 5.5.51-r0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |