Sensitive Information Disclosure in MariaDB Audit Plugin in PCF cf-mysql-release

Sensitive Information Disclosure in MariaDB Audit Plugin in PCF cf-mysql-release

CVE-2016-6653 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials.

Learn more about our Cis Benchmark Audit For Mariadb.