How severe is CVE-2016-3461?

High severity. CVSS v3 base score is 7.2 out of 10.

Is CVE-2016-3461 known to be exploited?

6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Oracle Mysql_enterprise_monitor

CVE-2016-3461

Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitor…

EPSS: 0.009 (75.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Oracle Mysql_enterprise_monitor — versions 3.0.25, 3.1.2
N/a — versions n/a

Public proof-of-concept exploits

References

secalert_us@oracle.com (x_refsource_MISC)
1035606 (vdb-entry, x_refsource_SECTRACK)
secalert_us@oracle.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2016-3461?: CVE-2016-3461 is a high-severity vulnerability in Oracle Mysql_enterprise_monitor. CVSS score: 7.2/10. Published 2016-04-21.
How severe is CVE-2016-3461?: High severity. CVSS v3 base score is 7.2 out of 10.
Is CVE-2016-3461 known to be exploited?: 6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.