Solved
Forum Discussion
boneyard
Sep 12, 2016MVP
that CVE was released today, not expecting an official ASM signature update that quick.
don't have time to fully understand the issue, but it seems to require quite some access on either the actual server running mysql or within mysql itself. in general you wouldn't have such access through a website and if you have then you most likely allow such access and a specific signature against is probably difficult to craft.
sure there is sql injection and such, but for that you already have some signatures and again if you are vulnerable for sql injections this is just one of the things they might be able to do.