CVE-2015-2575 (Medium) detected in mysql-connector-java-5.1.25.jar #79
Labels
security vulnerability
Security vulnerability detected by WhiteSource
Comments
mend-for-github-com
bot
added
the
security vulnerability
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
CVE-2015-2575 - Medium Severity Vulnerability
MySQL JDBC Type 4 driver
Library home page: http://dev.mysql.com/doc/connector-j/en/
Path to dependency file: /pom.xml
Path to vulnerable library: /er/.m2/repository/mysql/mysql-connector-java/5.1.25/mysql-connector-java-5.1.25.jar
Dependency Hierarchy:
Found in HEAD commit: 37d0b7ee05754126f03e629b55ba080aeeb295b1
Found in base branch: master
Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.
Publish Date: 2015-04-16
URL: CVE-2015-2575
Base Score Metrics:
- Exploitability Metrics:
- Attack Vector: Network
- Attack Complexity: High
- Privileges Required: Low
- User Interaction: None
- Scope: Unchanged
- Impact Metrics:
- Confidentiality Impact: Low
- Integrity Impact: Low
- Availability Impact: None
For more information on CVSS3 Scores, click here.Type: Upgrade version
Origin: GHSA-gc43-g62c-99g2
Release Date: 2015-04-16
Fix Resolution: 5.1.35
⛑️ Automatic Remediation is available for this issue
The text was updated successfully, but these errors were encountered: