Lucene search

K

[email protected]NVD:CVE-2014-6491

HistoryOct 15, 2014 - 10:55 p.m.

CVE-2014-6491

2014-10-1522:55:05

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.5 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

84.9%

Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6500.

Affected configurations

NVD

Node

oraclemysqlRange5.5.0–5.5.39

OR

oraclemysqlRange5.6.0–5.6.20

Node

juniperjunos_spaceRange≤15.1

Node

mariadbmariadbRange5.5.0–5.5.40

OR

mariadbmariadbRange10.0.0–10.0.15

Node

oraclesolarisMatch11.3

References

kb.juniper.net/InfoCenter/index?page=content&id=JSA10698

lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html

secunia.com/advisories/61579

secunia.com/advisories/62073

security.gentoo.org/glsa/glsa-201411-02.xml

www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html

www.securityfocus.com/bid/70444

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.5 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

84.9%

Related for NVD:CVE-2014-6491

cve2 mariadbunix2 cvelist2 ubuntucve2 debiancve2 nvd1 prion2 nessus13 amazon1 openvas15 slackware1 mageia1 ibm1 gentoo1 debian2 osv1 f52 ubuntu1 suse3 securityvulns1 oracle1