Search for vulnerabilities
Vulnerability details: VCID-jat4-zxyp-aaah
Vulnerability ID VCID-jat4-zxyp-aaah
Aliases CVE-2016-0546
Summary CVE-2016-0546 mysql: unspecified vulnerability in subcomponent: Client (CPU January 2016)
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-0546.html
rhas Moderate https://access.redhat.com/errata/RHSA-2016:0534
rhas Critical https://access.redhat.com/errata/RHSA-2016:0705
rhas Important https://access.redhat.com/errata/RHSA-2016:1480
rhas Moderate https://access.redhat.com/errata/RHSA-2016:1481
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00065 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00065 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00065 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00245 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.0027 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
epss 0.00305 https://api.first.org/data/v1/epss?cve=CVE-2016-0546
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0505
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0546
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0596
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0597
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0598
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0600
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0606
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0608
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0609
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0616
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2047
cvssv2 7.2 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 7.2 https://nvd.nist.gov/vuln/detail/CVE-2016-0546
generic_textual Medium https://ubuntu.com/security/notices/USN-2881-1
cvssv3.1 8.8 http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
generic_textual HIGH http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
generic_textual HIGH http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
generic_textual Medium http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixMSQL
cvssv3.1 8.8 http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
generic_textual HIGH http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00016.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-0546.html
http://rhn.redhat.com/errata/RHSA-2016-0534.html
http://rhn.redhat.com/errata/RHSA-2016-0705.html
http://rhn.redhat.com/errata/RHSA-2016-1480.html
http://rhn.redhat.com/errata/RHSA-2016-1481.html
https://access.redhat.com/errata/RHSA-2016:1132
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0546.json
https://api.first.org/data/v1/epss?cve=CVE-2016-0546
https://bugzilla.redhat.com/show_bug.cgi?id=1301493
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0505
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0546
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0596
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0597
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0598
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0600
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0606
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0608
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0609
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0616
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2047
https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-47.html
https://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-28.html
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://github.com/mysql/mysql-server/commit/0dbd5a8797ed4bd18e8b883988fb62177eb0f73f
https://mariadb.com/kb/en/mariadb/mariadb-10110-release-notes/
https://mariadb.com/kb/en/mariadb/mariadb-5547-release-notes/
https://mariadb.com/kb/en/mdb-10023-rn/
https://ubuntu.com/security/notices/USN-2881-1
http://www.debian.org/security/2016/dsa-3453
http://www.debian.org/security/2016/dsa-3459
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html#AppendixMSQL
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/81066
http://www.securitytracker.com/id/1034708
http://www.ubuntu.com/usn/USN-2881-1
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
CVE-2016-0546 https://nvd.nist.gov/vuln/detail/CVE-2016-0546
RHSA-2016:0534 https://access.redhat.com/errata/RHSA-2016:0534
RHSA-2016:0705 https://access.redhat.com/errata/RHSA-2016:0705
RHSA-2016:1480 https://access.redhat.com/errata/RHSA-2016:1480
RHSA-2016:1481 https://access.redhat.com/errata/RHSA-2016:1481
USN-2881-1 https://usn.ubuntu.com/2881-1/
No exploits are available.
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2016-0546
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.17094
EPSS Score 0.00046
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.