Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-5614
HistoryDec 03, 2012 - 12:49 p.m.

CVE-2012-5614

2012-12-0312:49:43
[email protected]
web.nvd.nist.gov

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6 Medium

AI Score

Confidence

Low

0.032 Low

EPSS

Percentile

91.2%

JSON

Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.

Affected configurations

NVD
Node
oraclemysqlRange5.1.05.1.67
OR
oraclemysqlRange5.5.05.5.29
Node
mariadbmariadbRange5.5.05.5.30
OR
mariadbmariadbRange10.0.010.0.2
Node
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_eusMatch6.4
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_server_ausMatch6.4
OR
redhatenterprise_linux_workstationMatch6.0

Related

packetstorm 1
cve 1
mariadbunix 1
cvelist 1
prion 1
ubuntucve 1
veracode 10
openvas 10
thn 1
securityvulns 2
threatpost 1
nessus 11
amazon 2
oraclelinux 1
centos 1
redhat 1
gentoo 1
oracle 1
packetstorm
packetstorm
Oracle MySQL 5.5.19-log Denial Of Service
2012-12-03 00:00:00
cve
cve
CVE-2012-5614
2012-12-03 12:49:43
mariadbunix
mariadbunix
CVE-2012-5614
2012-12-03 12:49:00
cvelist
cvelist
CVE-2012-5614
2012-12-03 11:00:00
prion
prion
Command injection
2012-12-03 12:49:00
ubuntucve
ubuntucve
CVE-2012-5614
2012-12-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:52:29
Improper Access Control
2019-05-02 04:44:49
Improper Access Control
2019-05-02 04:44:48
openvas
openvas
Oracle MySQL Server <= 5.1.67 / 5.5 <= 5.5.29 Security Update (cpuapr2013) - Linux
2013-04-22 00:00:00
Oracle MySQL Server <= 5.1.67 / 5.5 <= 5.5.29 Security Update (cpuapr2013) - Windows
2021-02-09 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-187)
2015-09-08 00:00:00
thn
thn
Multiple MySQL database Zero-day vulnerabilities published
2012-12-03 13:54:00
securityvulns
securityvulns
MySQL multiple security vulnerabilities
2012-12-07 00:00:00
Oracle / Sun / MySQL / PeopleSoft multiple applications security vulnerabilities
2013-05-04 00:00:00
threatpost
threatpost
Experts Downplay MySQL Database Zero-Days
2012-12-03 19:31:06
nessus
nessus
MariaDB 10.0.0 < 10.0.2 Multiple Vulnerabilities
2022-11-18 00:00:00
MariaDB 5.5 < 5.5.30 Multiple Vulnerabilities
2013-03-29 00:00:00
Amazon Linux AMI : mysql55 (ALAS-2013-187)
2013-09-04 00:00:00
amazon
amazon
Important: mysql51
2013-04-25 20:40:00
Important: mysql55
2013-04-25 20:40:00
oraclelinux
oraclelinux
mysql security update
2013-04-25 00:00:00
centos
centos
mysql security update
2013-04-25 20:16:01
redhat
redhat
(RHSA-2013:0772) Important: mysql security update
2013-04-25 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2013-08-29 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2013
2013-04-16 00:00:00

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6 Medium

AI Score

Confidence

Low

0.032 Low

EPSS

Percentile

91.2%

JSON
Related for NVD:CVE-2012-5614
packetstorm1cve1mariadbunix1cvelist1prion1ubuntucve1veracode10openvas10thn1securityvulns2threatpost1nessus11amazon2oraclelinux1centos1redhat1gentoo1oracle1