Lucene search
K

15242 matches found

Microsoft CVE
Microsoft CVE
added 2024/07/10 7:0 a.m.5 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

...

6.5CVSS7AI score0.01104EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/07/10 7:0 a.m.6 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).

...

5.5CVSS6.6AI score0.00839EPSS
Exploits0
OSV
OSV
added 2024/06/14 11:8 a.m.1 views

OESA-2024-1712 mariadb security update

MariaDB turns data into structured information in a wide array of applications, ranging from banking to websites. It is an enhanced, drop-in replacement for MySQL. MariaDB is used because it is fast, scalable and robust, with a rich ecosystem of storage engines, plugins and many other tools make ...

4.9CVSS5.3AI score0.01782EPSS
Exploits0References2
Redos
Redos
added 2024/06/11 12:0 a.m.12 views

ROS-20240611-04

A vulnerability in the JSON Handler component of the Python PyMySQL library of MySQL is related to keys not being escaped properly using escapedict. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to data, tampering with data, or potentially...

6.3CVSS7.8AI score0.00691EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.12 views

Vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system, which allows attackers to cause service interruptions.

The vulnerability of the Server:Thread Pooling component of the Oracle MySQL Server database management system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

6.1CVSS6.2AI score0.01107EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.6 views

Vulnerability of the Cluster component: The general database management system of Oracle MySQL Server, which allows attackers to disclose sensitive information.

The vulnerability of the Oracle MySQL Server component in the Oracle database management system involves insufficient protection for operational data. Exploiting this vulnerability can allow an attacker to disclose sensitive information that should be protected...

2.2CVSS6.9AI score0.00401EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/04 12:0 a.m.6 views

Vulnerability of the Server: Group Replication Plugin component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Group Replication Plugin component of the Oracle MySQL Server database management system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

6.1CVSS6.3AI score0.00885EPSS
Exploits0References6Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.15 views

RHEL 6 : mysql55-mysql (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: unspecified vulnerability in subcomponent: Server: Option CPU July 2016 CVE-2016-3471 - mysql:...

7.5CVSS5.4AI score0.30146EPSS
Exploits6References36
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 5 : mysql55-mysql (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: generallog can write to configuration files, leading to privilege escalation CPU Oct 2016...

7.5CVSS6.2AI score0.6773EPSS
Exploits22References40
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 6 : mariadb-galera (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: unspecified vulnerability related to Server:DML CPU October 2015 CVE-2015-4879 - mysql: unspecifie...

6.5CVSS6.6AI score0.07451EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2024/05/29 12:0 a.m.24 views

MariaDB 11.5.0 < 11.5.1

The version of MariaDB installed on the remote host is prior to 11.5.1. It is, therefore, affected by a vulnerability as referenced in the mariadb-1151-release-notes advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Client: mysqldump. Supported versions that are...

4.9CVSS5.8AI score0.00424EPSS
Exploits0References2
OSV
OSV
added 2024/05/24 11:8 a.m.2 views

OESA-2024-1635 mysql security update

The MySQLTM software delivers a very fast, multi-threaded, multi-user, and robust SQL Structured Query Language database server. MySQL Server is intended for mission-critical, heavy-load production systems as well as for embedding into mass-deployed software. MySQL is a trademark of Oracle and/or...

4.9CVSS6AI score0.00885EPSS
Exploits0References2
OSV
OSV
added 2024/05/24 11:8 a.m.2 views

OESA-2024-1633 mysql security update

The MySQLTM software delivers a very fast, multi-threaded, multi-user, and robust SQL Structured Query Language database server. MySQL Server is intended for mission-critical, heavy-load production systems as well as for embedding into mass-deployed software. MySQL is a trademark of Oracle and/or...

4.9CVSS6AI score0.00885EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.5 views

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

6.8CVSS6.2AI score0.01085EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.5 views

Vulnerability of the Server component: The DML of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

7.5CVSS6.3AI score0.00838EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/05/24 12:0 a.m.5 views

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

6.8CVSS6.1AI score0.00891EPSS
Exploits0References4Affected Software1
F5 Networks
F5 Networks
added 2024/05/20 12:8 a.m.35 views

K000139678: MySQL Server vulnerability CVE-2024-21055

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

4.9CVSS5.2AI score0.00887EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/20 12:0 a.m.16 views

Slackware Linux 15.0 / current mariadb Vulnerability (SSA:2024-141-01)

The version of mariadb installed on the remote host is prior to 10.11.8 / 10.5.25. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-141-01 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Client: mysqldump. Supported versions that are...

4.9CVSS5.8AI score0.00424EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/05/17 12:0 a.m.4 views

Vulnerability of the Server component: The Optimizer component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s optimizer is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL protocol...

6.1CVSS6.2AI score0.00969EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.18 views

MariaDB 11.2.0 < 11.2.4

The version of MariaDB installed on the remote host is prior to 11.2.4. It is, therefore, affected by a vulnerability as referenced in the 11.2.4 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected are 8.0.36 and...

4.9CVSS6.7AI score0.00424EPSS
Exploits0References2
Rows per page
Query Builder