CVE-2014-4207

2014-07-1705:10:15

[email protected]

web.nvd.nist.gov

cve-2014-4207

mysql server

oracle

remote authorization

sroptzr

nvd

6.1 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

57.3%

JSON

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR.

Affected configurations

NVD

Node

suselinux_enterprise_desktopMatch11sp3

suselinux_enterprise_serverMatch11sp3-

suselinux_enterprise_serverMatch11sp3vmware

suselinux_enterprise_software_development_kitMatch11sp3

Node

oraclemysqlRange5.5.0–5.5.37

Node

suselinux_enterprise_desktopMatch12-

suselinux_enterprise_serverMatch12-

suselinux_enterprise_software_development_kitMatch12-

suselinux_enterprise_workstation_extensionMatch12-

Node

mariadbmariadbRange5.5.0–5.5.38

mariadbmariadbRange10.0.0–10.0.12

Node

debiandebian_linuxMatch7.0

CPENameOperatorVersion
suse:linux_enterprise_desktopsuse linux enterprise desktopeq11
suse:linux_enterprise_serversuse linux enterprise servereq11
suse:linux_enterprise_software_development_kitsuse linux enterprise software development kiteq11

CPE	Name	Operator	Version
suse:linux_enterprise_desktop	suse linux enterprise desktop	eq	11
suse:linux_enterprise_server	suse linux enterprise server	eq	11
suse:linux_enterprise_software_development_kit	suse linux enterprise software development kit	eq	11