UBUNTU-CVE-2017-3590

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2017-3590

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-3590.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2017-3590

Upstream

CVE-2017-3590

Published

2017-04-24T19:59:00Z

Modified

2025-10-24T04:46:07Z

Severity

3.3 (Low) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
Ubuntu - low

Summary

[none]

Details

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/Python). Supported versions that are affected are 2.1.5 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

References

Affected packages

Ubuntu:16.04:LTS / mysql-connector-python

Package

Name: mysql-connector-python
Purl: pkg:deb/ubuntu/mysql-connector-python@2.0.4-1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.0.4-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "python-mysql.connector",
            "binary_version": "2.0.4-1"
        },
        {
            "binary_name": "python3-mysql.connector",
            "binary_version": "2.0.4-1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2017/UBUNTU-CVE-2017-3590.json"