MySQL vulnerability bind address 127.0.0.1

Am I safe from MySQL access from another host even if they know the credential of my database, including the port?

As far as I know the bing port doesn’t allow any remote access. Correct me if I’m wrong.