Lucene search
K

19 matches found

OSV
OSV
added 2025/10/22 4:47 p.m.3 views

GHSA-R397-FF8C-WV2G aiomysql allows arbitrary access to client files through vulnerability of a malicious MySQL server

Summary The client-side settings are not checked before sending local files to MySQL server, which allows obtaining arbitrary files from the client using a rogue server. Details It is possible to create a rogue MySQL server that emulates authorization, ignores client flags and requests arbitrary...

8.2CVSS6.5AI score0.00354EPSS
Exploits0References5
Circl
Circl
added 2023/11/15 4:53 p.m.4 views

CVE-2019-2503

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:23+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5992...

6.4CVSS6.3AI score0.02487EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.3 views

SUSE CVE-2019-2503

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical...

6.4CVSS7.7AI score0.02487EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/11/18 12:0 a.m.32 views

MariaDB 10.2.0 < 10.2.18 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.2.18. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.2.18 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that a...

6.4CVSS6.8AI score0.02487EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/18 12:0 a.m.32 views

MariaDB 10.1.0 < 10.1.36

The version of MariaDB installed on the remote host is prior to 10.1.36. It is, therefore, affected by a vulnerability as referenced in the 10.1.36 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affect...

6.4CVSS6.8AI score0.02487EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.39 views

MariaDB 10.3.0 < 10.3.10

The version of MariaDB installed on the remote host is prior to 10.3.10. It is, therefore, affected by a vulnerability as referenced in the 10.3.10 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affect...

6.4CVSS6.8AI score0.02487EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/12/24 8:15 p.m.32 views

CVE-2020-28912

With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between...

7CVSS7.2AI score0.00421EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2020/12/24 7:49 p.m.51 views

CVE-2020-28912

With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between...

7CVSS8.2AI score0.00421EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2020/11/03 12:0 a.m.8 views

PT-2020-17051 · Mariadb Foundation +4 · Mariadb +3

With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between...

7CVSS6.8AI score0.02487EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.113 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : mariadb Multiple Vulnerabilities (NS-SA-2019-0243)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has mariadb packages installed that are affected by multiple vulnerabilities: - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Storage Engines. Supported versions that are affected are 5.5.61...

6.5CVSS5.8AI score0.0461EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/09/20 12:0 a.m.64 views

Amazon Linux 2 : mariadb (ALAS-2019-1292)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to the physical...

6.5CVSS5.7AI score0.0461EPSS
Exploits0References10
Amazon
Amazon
added 2019/09/13 12:0 a.m.77 views

Medium: mariadb

Issue Overview: Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Connection Handling. Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Difficult to exploit vulnerability allows low privileged attacker with access to...

6.5CVSS6.7AI score0.0461EPSS
Exploits0
Cent OS
Cent OS
added 2019/08/30 3:38 a.m.569 views

mariadb security update

CentOS Errata and Security Advisory CESA-2019:2327 An update for mariadb is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.1CVSS6.7AI score0.0461EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2019/03/04 12:0 a.m.246 views

Fedora 28 : community-mysql (2019-21b76d179e)

MySQL 5.7.25 Release notes : https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-25.html CVEs fixed : CVE-2019-2420 CVE-2019-2434 CVE-2019-2455 CVE-2019-2481 CVE-2019-2482 CVE-2019-2486 CVE-2019-2503 CVE-2019-2507 CVE-2019-2510 CVE-2019-2528 CVE-2019-2529 CVE-2019-2531 CVE-2019-2532...

7.1CVSS6.2AI score0.0461EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2019/02/06 12:0 a.m.36 views

openSUSE Security Update : mysql-community-server (openSUSE-2019-138)

This update for mysql-community-server to version 5.6.43 fixes the following issues : Security issues fixed : - CVE-2019-2534, CVE-2019-2529, CVE-2019-2482, CVE-2019-2455, CVE-2019-2503, CVE-2019-2537, CVE-2019-2481, CVE-2019-2507, CVE-2019-2531, CVE-2018-0734 boo1113652, boo1122198 %NASLMINLEVEL...

7.1CVSS6.4AI score0.12154EPSS
Exploits0References12
Chainguard
Chainguard
added 2019/01/16 7:30 p.m.4 views

CVE-2019-2503 vulnerabilities

Vulnerabilities for packages: mysql...

6.4CVSS6.9AI score0.02487EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/16 12:0 a.m.106 views

MariaDB 10.0.0 < 10.0.37 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.0.37. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.0.37 advisory. - The crc32big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors...

9.8CVSS7AI score0.0595EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2019/01/16 12:0 a.m.43 views

Oracle MySQL Server <= 5.6.42 / 5.7 <= 5.7.24 / 8.0 <= 8.0.13 Security Update (cpujan2019) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.1CVSS7.1AI score0.12154EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2018/11/07 12:0 a.m.47 views

Debian: Security Advisory (DLA-1570-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.03968EPSS
Exploits0References3
Rows per page
Query Builder