Candidate: CVE-2018-2598
PublicDate: 2018-07-18 13:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-2598
Description:
 Vulnerability in the MySQL Workbench component of Oracle MySQL
 (subcomponent: Workbench: Security: Encryption). Supported versions that
 are affected are 6.3.10 and earlier. Difficult to exploit vulnerability
 allows unauthenticated attacker with network access via multiple protocols
 to compromise MySQL Workbench. Successful attacks of this vulnerability can
 result in unauthorized read access to a subset of MySQL Workbench
 accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS
 Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N [3.7 LOW]


Patches_mysql-workbench:
upstream_mysql-workbench: released (8.0.17+dfsg-1)
precise/esm_mysql-workbench: DNE
trusty_mysql-workbench: ignored (reached end-of-life)
trusty/esm_mysql-workbench: DNE (trusty was needs-triage)
xenial_mysql-workbench: ignored (end of standard support, was needed)
artful_mysql-workbench: ignored (reached end-of-life)
bionic_mysql-workbench: needed
cosmic_mysql-workbench: ignored (reached end-of-life)
disco_mysql-workbench: DNE
eoan_mysql-workbench: not-affected (8.0.17+dfsg-1ubuntu2)
focal_mysql-workbench: DNE
groovy_mysql-workbench: DNE
hirsute_mysql-workbench: DNE
impish_mysql-workbench: not-affected
devel_mysql-workbench: not-affected