CVE-2017-3313
- Source
- https://cve.org/CVERecord?id=CVE-2017-3313
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3313.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-3313
- Downstream
- Related
- Published
- 2017-01-27T22:59:04.383Z
- Modified
- 2026-05-30T10:24:05.260384Z
- Severity
-
- 4.7 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.7 (Confidentiality impacts).
- Database specific
{ "unresolved_ranges": [ { "extracted_events": [ { "last_affected": "10.04" }, { "last_affected": "12.04" }, { "last_affected": "12.10" }, { "last_affected": "13.10" } ], "cpes": [ "cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*", "cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*" ], "vendor_product": "canonical:ubuntu_linux", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "8.0" } ], "cpes": [ "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" ], "vendor_product": "debian:debian_linux", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "5.0" }, { "last_affected": "6.0" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_desktop", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "6.5" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_eus", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "5.0" }, { "last_affected": "6.0" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_server", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "6.5" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_server_aus", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "6.5" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_server_tus", "source": "CPE_STRING" }, { "extracted_events": [ { "last_affected": "5.0" }, { "last_affected": "6.0" } ], "cpes": [ "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" ], "vendor_product": "redhat:enterprise_linux_workstation", "source": "CPE_STRING" } ] }- References
-
- http://www.debian.org/security/2017/dsa-3767
- http://www.debian.org/security/2017/dsa-3809
- http://www.securityfocus.com/bid/95527
- http://www.securitytracker.com/id/1037640
- https://access.redhat.com/errata/RHSA-2017:2192
- https://access.redhat.com/errata/RHSA-2017:2787
- https://access.redhat.com/errata/RHSA-2017:2886
- https://access.redhat.com/errata/RHSA-2018:0279
- https://access.redhat.com/errata/RHSA-2018:0574
- https://security.gentoo.org/glsa/201702-17
- http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
Affected packages
Git / github.com/mariadb/server
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mariadb/server
- Events
-
IntroducedFixedIntroducedFixedIntroducedFixedIntroducedFixed
- Database specific
{ "extracted_events": [ { "introduced": "5.5.0" }, { "fixed": "5.5.55" }, { "introduced": "10.0.0" }, { "fixed": "10.0.30" }, { "introduced": "10.1.0" }, { "fixed": "10.1.22" }, { "introduced": "10.2.0" }, { "fixed": "10.2.5" } ], "cpe": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*", "source": "CPE_RANGE" }
Affected versions
mariadb-10.*
mariadb-10.1.0
mariadb-10.1.10
mariadb-10.1.11
mariadb-10.1.12
mariadb-10.1.13
mariadb-10.1.14
mariadb-10.1.15
mariadb-10.1.16
mariadb-10.1.17
mariadb-10.1.18
mariadb-10.1.19
mariadb-10.1.2
mariadb-10.1.20
mariadb-10.1.21
mariadb-10.1.3
mariadb-10.1.4
mariadb-10.1.5
mariadb-10.1.6
mariadb-10.1.7
mariadb-10.1.8
mariadb-10.1.9
mariadb-10.2.0
mariadb-10.2.1
mariadb-10.2.2
Database specific
vanir_signatures
[
{
"digest": {
"function_hash": "42526495682318897469202677931179336455",
"length": 595.0
},
"id": "CVE-2017-3313-017750b4",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "init_dumping"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "227475061533329738085031105100031106996",
"length": 10937.0
},
"id": "CVE-2017-3313-0778ee24",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "get_table_structure"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"line_hashes": [
"287840253208859831013181147116206525376",
"324136547317919813359352064277236333715",
"282430677639818099929617913825166653421",
"147139391803266763314761740611417390198",
"258802801894329452504020721432820698677",
"91138205289354102969073748767653790743",
"233493404795263154842363746119238816673",
"309355098527796234463986548578076187884",
"246521560388497353004885266086561128681",
"65595240965851819816944346960684994155",
"321094355807444156552637940556050534243",
"173566830439109051968149803806679781001",
"199290765851492278749490509745647329182",
"45989153402127012733139951888311868178",
"114416289830545276075284455762878229460",
"277119867620039162696505662519865168492",
"1406835726190704947481628521158899781",
"174614877685627249914600596442902313165",
"99127866680226208064705749248054614695",
"39471861491129910410498619482011041391",
"281380462612982588805056671783939902254",
"276555443743869160836284840037473276887",
"63704244798856370080746536556622922021",
"196970177491568200692872190131374048986",
"211909851172610884740259624997676708138",
"24854640261605884487014526616906487662",
"206025079568806760122742316187267806127",
"311871759366108697833006663439889249742",
"221096165144546299147742464005478717924",
"105220650397672059064628403102505049061",
"18628631760629166584977079678764798872",
"119656696777604396040253590625706193749",
"221096165144546299147742464005478717924",
"168602443676074510547085005830811337443",
"114424463055898619066660915433101962969",
"153916697495976485808117997579764618991",
"180695665933106799821938816193290640991",
"317750465811503273914953924986043255767",
"299148576020784136739117619416196108572",
"118157318188170081201040706357790495674",
"41102378010887911272271175550789649896",
"149518576500014602976768066358926314484",
"54189500566898801091712575313356035066",
"44002167410011708810019578410179393524",
"203679880670483351499138583783885028443",
"270476162896496040883649640857060526904",
"204451005490097465986732821480961200936",
"223608088947237646770529443703107663724",
"250724728853505500189006708705469851241",
"97779087057840683929947270035268598704",
"332940999390577626529849682776968183891",
"171433106859136870351199048718637400189",
"260127954252147593913051498861828999833",
"292556811704801901721130727931310806132",
"315481399744044133717527275946904624115",
"144450971157728465792195077319518344721",
"138134974382930509413378452785541640177",
"93139083326288700668774484888006665665"
],
"threshold": 0.9
},
"id": "CVE-2017-3313-230fc291",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c"
},
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "61031449315181416583737506107960987338",
"length": 1749.0
},
"id": "CVE-2017-3313-3d5cc0a7",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "write_header"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "229205966501763571287196631931031338507",
"length": 3068.0
},
"id": "CVE-2017-3313-77a2b85b",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "dump_routines_for_db"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "283872701544742768257779130745336628180",
"length": 3056.0
},
"id": "CVE-2017-3313-7c5b056e",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "dump_events_for_db"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "273064814930547228481748278923107127025",
"length": 9653.0
},
"id": "CVE-2017-3313-923416e2",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "dump_table"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
},
{
"digest": {
"function_hash": "52340132320564584267245206336274565455",
"length": 4417.0
},
"id": "CVE-2017-3313-be381038",
"signature_version": "v1",
"target": {
"file": "client/mysqldump.c",
"function": "get_view_structure"
},
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/mariadb/server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3313.json"
vanir_signatures_modified
"2026-05-30T10:24:05Z"
Git / github.com/mysql/mysql-server
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mysql/mysql-server
- Events
-
IntroducedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affected
- Database specific
{ "extracted_events": [ { "introduced": "5.5.0" }, { "last_affected": "5.5.53" }, { "introduced": "5.6.0" }, { "last_affected": "5.6.34" }, { "introduced": "5.7.0" }, { "last_affected": "5.7.16" } ], "cpe": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "source": "CPE_RANGE" }
Affected versions
mysql-3.*
mysql-3.23.22-beta
mysql-3.23.28-gamma
mysql-3.23.30-gamma
mysql-3.23.31
mysql-3.23.32
mysql-3.23.33
mysql-3.23.36
mysql-4.*
mysql-4.0.2
mysql-4.0.4
mysql-5.*
mysql-5.1.4
mysql-5.5.15
mysql-5.5.19
mysql-5.5.23
mysql-5.5.25
mysql-5.5.27
mysql-5.5.44
mysql-5.5.47
mysql-5.5.49
mysql-5.5.53
mysql-5.6.34
mysql-5.7.16