Lucene search

K
cveOracleCVE-2016-0647
HistoryApr 21, 2016 - 10:59 a.m.

CVE-2016-0647

2016-04-2110:59:15
oracle
web.nvd.nist.gov
111
cve-2016-0647
oracle
mysql
mariadb
vulnerability
local users
availability
fts
nvd

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

4.2

Confidence

Low

EPSS

0

Percentile

10.1%

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect availability via vectors related to FTS.

Affected configurations

Nvd
Node
opensuseleapMatch42.1
Node
debiandebian_linuxMatch8.0
Node
oraclelinuxMatch7
Node
redhatenterprise_linuxMatch6.0
OR
redhatenterprise_linuxMatch7.0
Node
ibmpowerkvmMatch2.1
OR
ibmpowerkvmMatch3.1
Node
oraclemysqlRange5.5.05.5.48
OR
oraclemysqlRange5.6.05.6.29
OR
oraclemysqlRange5.7.05.7.11
Node
mariadbmariadbRange5.5.205.5.49
OR
mariadbmariadbRange10.0.010.0.25
OR
mariadbmariadbRange10.1.010.1.14
VendorProductVersionCPE
opensuseleap42.1cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
debiandebian_linux8.0cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
oraclelinux7cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*
redhatenterprise_linux6.0cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
redhatenterprise_linux7.0cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
ibmpowerkvm2.1cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
ibmpowerkvm3.1cpe:2.3:a:ibm:powerkvm:3.1:*:*:*:*:*:*:*
oraclemysql*cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
mariadbmariadb*cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

References

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

4.2

Confidence

Low

EPSS

0

Percentile

10.1%