VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-3md2-cjc1-ckdw

Essentials
Severities (20)
References (42)
Severity details (11)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-3md2-cjc1-ckdw
Aliases	CVE-2018-2612
Summary	Multiple vulnerabilities were found in MySQL, the worst of which may allow remote execution of arbitrary code.
Status	Published
Exploitability	0.5
Weighted Severity	5.9
Risk	3.0
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
ssvc	Track	https://access.redhat.com/errata/RHSA-2018:0586
ssvc	Track	https://access.redhat.com/errata/RHSA-2018:0587
ssvc	Track	https://access.redhat.com/errata/RHSA-2019:1258
cvssv3	6.5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2612.json
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
epss	0.00277	https://api.first.org/data/v1/epss?cve=CVE-2018-2612
ssvc	Track	https://lists.debian.org/debian-lts-announce/2018/06/msg00015.html
ssvc	Track	https://security.netapp.com/advisory/ntap-20180117-0002/
ssvc	Track	https://usn.ubuntu.com/3537-1/
ssvc	Track	https://www.debian.org/security/2018/dsa-4341
ssvc	Track	http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
ssvc	Track	http://www.securityfocus.com/bid/102709
ssvc	Track	http://www.securitytracker.com/id/1040216

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2612.json
		https://api.first.org/data/v1/epss?cve=CVE-2018-2612
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10268
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10378
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15365
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2562
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2612
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2622
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2640
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2665
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2668
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2755
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2761
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2766
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2767
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2771
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2781
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2782
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2784
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2787
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2813
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2817
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2819
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3058
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3063
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3064
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3066
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3081
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3143
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3156
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3174
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3251
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3282
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2503
102709		http://www.securityfocus.com/bid/102709
1040216		http://www.securitytracker.com/id/1040216
1535497		https://bugzilla.redhat.com/show_bug.cgi?id=1535497
GLSA-201802-04		https://security.gentoo.org/glsa/201802-04
RHSA-2018:0586		https://access.redhat.com/errata/RHSA-2018:0586
RHSA-2018:0587		https://access.redhat.com/errata/RHSA-2018:0587
RHSA-2019:1258		https://access.redhat.com/errata/RHSA-2019:1258
USN-3537-1		https://usn.ubuntu.com/3537-1/

No exploits are available.

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://access.redhat.com/errata/RHSA-2018:0586

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://access.redhat.com/errata/RHSA-2018:0587

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://access.redhat.com/errata/RHSA-2019:1258

Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-2612.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://lists.debian.org/debian-lts-announce/2018/06/msg00015.html

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://security.netapp.com/advisory/ntap-20180117-0002/

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://usn.ubuntu.com/3537-1/

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at https://www.debian.org/security/2018/dsa-4341

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at http://www.securityfocus.com/bid/102709

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:23:10Z/ Found at http://www.securitytracker.com/id/1040216

Exploit Prediction Scoring System (EPSS)

Percentile	0.5101
EPSS Score	0.00277
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:03:21.292122+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201802-04	38.0.0