{"id":"CVE-2017-3313","details":"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.7 (Confidentiality impacts).","modified":"2026-04-11T04:59:37.671562Z","published":"2017-01-27T22:59:04.383Z","related":["MGASA-2017-0096","SUSE-RU-2023:3956-1","SUSE-RU-2023:4991-1","SUSE-SU-2017:0408-1","SUSE-SU-2017:1311-1","SUSE-SU-2017:1315-1","SUSE-SU-2018:1853-1","openSUSE-SU-2024:11038-1"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2886"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201702-17"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3809"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/95527"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1037640"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2192"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:2787"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0279"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0574"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3767"},{"type":"FIX","url":"http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mariadb/server","events":[{"introduced":"776555af021e917ce0d6235386b43ae59fdd5161"},{"fixed":"656d0f10e51a554ec2ff895c5e25e16a5da0d00e"},{"introduced":"c235de12ae3723b96944337bd89ad9cc87f21d8f"},{"fixed":"68be011cf2ec96a622db857fe9c418380d106d0d"},{"introduced":"9664240c948a92c22ccda0e1f5a420eb776ddcb1"},{"fixed":"ebce682557c34fc6cf0837afe66ede25b1f849b8"}],"database_specific":{"versions":[{"introduced":"10.0.0"},{"fixed":"10.0.30"},{"introduced":"10.1.0"},{"fixed":"10.1.22"},{"introduced":"10.2.0"},{"fixed":"10.2.5"}]}},{"type":"GIT","repo":"https://github.com/mysql/mysql-server","events":[{"introduced":"54df0057e18d8c82c23fbd4e0bf5b5dc2e762955"},{"last_affected":"5c6169fb309981b564a17bee31b367a18866d674"},{"introduced":"0"},{"last_affected":"eada4d562bda506163131233700ce5bdc0703a8f"},{"introduced":"0"},{"last_affected":"c28e258157f39f25e044bb72e8bae1ff00989a3d"},{"introduced":"0"},{"last_affected":"270fd3411e3d671a73ed9725940a30080f59ce6d"},{"introduced":"0"},{"last_affected":"f9e2c6cd27268e72198bde3c1a71eb1273df335a"},{"introduced":"0"},{"last_affected":"f9e2c6cd27268e72198bde3c1a71eb1273df335a"},{"introduced":"0"},{"last_affected":"f9e2c6cd27268e72198bde3c1a71eb1273df335a"},{"introduced":"54df0057e18d8c82c23fbd4e0bf5b5dc2e762955"},{"fixed":"6fa5e0814662d691be1a29bf88332348ec7c50c9"}],"database_specific":{"versions":[{"introduced":"5.5.0"},{"last_affected":"5.5.53"},{"introduced":"5.6.0"},{"last_affected":"5.6.34"},{"introduced":"5.7.0"},{"last_affected":"5.7.16"},{"introduced":"0"},{"last_affected":"8.0"},{"introduced":"0"},{"last_affected":"5.0"},{"introduced":"0"},{"last_affected":"5.0"},{"introduced":"0"},{"last_affected":"5.0"},{"introduced":"5.5.0"},{"fixed":"5.5.55"}]}}],"versions":["mariadb-10.1.0","mariadb-10.1.10","mariadb-10.1.11","mariadb-10.1.12","mariadb-10.1.13","mariadb-10.1.14","mariadb-10.1.15","mariadb-10.1.16","mariadb-10.1.17","mariadb-10.1.18","mariadb-10.1.19","mariadb-10.1.2","mariadb-10.1.20","mariadb-10.1.21","mariadb-10.1.3","mariadb-10.1.4","mariadb-10.1.5","mariadb-10.1.6","mariadb-10.1.7","mariadb-10.1.8","mariadb-10.1.9","mariadb-10.2.0","mariadb-10.2.1","mariadb-10.2.2","mysql-3.23.22-beta","mysql-3.23.28-gamma","mysql-3.23.30-gamma","mysql-3.23.31","mysql-3.23.32","mysql-3.23.33","mysql-3.23.36","mysql-4.0.2","mysql-4.0.4","mysql-5.0.0","mysql-5.1.4","mysql-5.5.15","mysql-5.5.19","mysql-5.5.23","mysql-5.5.25","mysql-5.5.27","mysql-5.5.44","mysql-5.5.47","mysql-5.5.49","mysql-5.5.53","mysql-5.6.34","mysql-5.7.16","mysql-8.0.0"],"database_specific":{"vanir_signatures_modified":"2026-04-11T04:59:37Z","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.04"}]},{"events":[{"introduced":"0"},{"last_affected":"12.04"}]},{"events":[{"introduced":"0"},{"last_affected":"12.10"}]},{"events":[{"introduced":"0"},{"last_affected":"13.10"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"6.5"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"6.5"}]},{"events":[{"introduced":"0"},{"last_affected":"6.5"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-3313.json","vanir_signatures":[{"digest":{"length":3056,"function_hash":"283872701544742768257779130745336628180"},"deprecated":false,"id":"CVE-2017-3313-0b2a382b","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"dump_events_for_db"},"signature_type":"Function","signature_version":"v1"},{"digest":{"length":1749,"function_hash":"61031449315181416583737506107960987338"},"deprecated":false,"id":"CVE-2017-3313-0deb9fd5","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"write_header"},"signature_type":"Function","signature_version":"v1"},{"digest":{"length":9653,"function_hash":"273064814930547228481748278923107127025"},"deprecated":false,"id":"CVE-2017-3313-3566e59d","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"dump_table"},"signature_type":"Function","signature_version":"v1"},{"digest":{"length":595,"function_hash":"42526495682318897469202677931179336455"},"deprecated":false,"id":"CVE-2017-3313-3dd1fd8a","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"init_dumping"},"signature_type":"Function","signature_version":"v1"},{"digest":{"length":3068,"function_hash":"229205966501763571287196631931031338507"},"deprecated":false,"id":"CVE-2017-3313-573a3d7b","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"dump_routines_for_db"},"signature_type":"Function","signature_version":"v1"},{"digest":{"length":4417,"function_hash":"52340132320564584267245206336274565455"},"deprecated":false,"id":"CVE-2017-3313-89d625e9","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"get_view_structure"},"signature_type":"Function","signature_version":"v1"},{"digest":{"threshold":0.9,"line_hashes":["287840253208859831013181147116206525376","324136547317919813359352064277236333715","282430677639818099929617913825166653421","147139391803266763314761740611417390198","258802801894329452504020721432820698677","91138205289354102969073748767653790743","233493404795263154842363746119238816673","309355098527796234463986548578076187884","246521560388497353004885266086561128681","65595240965851819816944346960684994155","321094355807444156552637940556050534243","173566830439109051968149803806679781001","199290765851492278749490509745647329182","45989153402127012733139951888311868178","114416289830545276075284455762878229460","277119867620039162696505662519865168492","1406835726190704947481628521158899781","174614877685627249914600596442902313165","99127866680226208064705749248054614695","39471861491129910410498619482011041391","281380462612982588805056671783939902254","276555443743869160836284840037473276887","63704244798856370080746536556622922021","196970177491568200692872190131374048986","211909851172610884740259624997676708138","24854640261605884487014526616906487662","206025079568806760122742316187267806127","311871759366108697833006663439889249742","221096165144546299147742464005478717924","105220650397672059064628403102505049061","18628631760629166584977079678764798872","119656696777604396040253590625706193749","221096165144546299147742464005478717924","168602443676074510547085005830811337443","114424463055898619066660915433101962969","153916697495976485808117997579764618991","180695665933106799821938816193290640991","317750465811503273914953924986043255767","299148576020784136739117619416196108572","118157318188170081201040706357790495674","41102378010887911272271175550789649896","149518576500014602976768066358926314484","54189500566898801091712575313356035066","44002167410011708810019578410179393524","203679880670483351499138583783885028443","270476162896496040883649640857060526904","204451005490097465986732821480961200936","223608088947237646770529443703107663724","250724728853505500189006708705469851241","97779087057840683929947270035268598704","332940999390577626529849682776968183891","171433106859136870351199048718637400189","260127954252147593913051498861828999833","292556811704801901721130727931310806132","315481399744044133717527275946904624115","144450971157728465792195077319518344721","138134974382930509413378452785541640177","93139083326288700668774484888006665665"]},"deprecated":false,"id":"CVE-2017-3313-ba0ccb33","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c"},"signature_type":"Line","signature_version":"v1"},{"digest":{"length":10937,"function_hash":"227475061533329738085031105100031106996"},"deprecated":false,"id":"CVE-2017-3313-d56a3b4a","source":"https://github.com/mysql/mysql-server/commit/6fa5e0814662d691be1a29bf88332348ec7c50c9","target":{"file":"client/mysqldump.c","function":"get_table_structure"},"signature_type":"Function","signature_version":"v1"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}