6 Medium
AI Score
Confidence
High
5.5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
0.002 Low
EPSS
Percentile
56.3%
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.
CPE | Name | Operator | Version |
---|---|---|---|
oracle:mysql | oracle mysql | le | 5.5.37 |
oracle:mysql | oracle mysql | le | 5.6.17 |
lists.opensuse.org/opensuse-security-announce/2014-08/msg00012.html
lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
seclists.org/fulldisclosure/2014/Dec/23
secunia.com/advisories/60425
www.debian.org/security/2014/dsa-2985
www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
www.securityfocus.com/archive/1/534161/100/0/threaded
www.securityfocus.com/bid/68573
www.securitytracker.com/id/1030578
www.vmware.com/security/advisories/VMSA-2014-0012.html
exchange.xforce.ibmcloud.com/vulnerabilities/94621