Lucene search

K
OracleMysql

1325 matches found

CVE
CVE
added 2016/04/21 10:59 a.m.81 views

CVE-2016-0661

Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Options.

4.7CVSS4.8AI score0.00229EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.81 views

CVE-2017-3460

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. S...

4.9CVSS4.9AI score0.00333EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.81 views

CVE-2017-3638

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Success...

4.9CVSS4.6AI score0.00291EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.81 views

CVE-2018-2590

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to comp...

6.8CVSS4.8AI score0.00605EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.81 views

CVE-2018-2703

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to c...

6.8CVSS6.1AI score0.00875EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.80 views

CVE-2012-0112

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0115, CVE-2012-0119, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

3.5CVSS4.5AI score0.00716EPSS
CVE
CVE
added 2012/07/17 10:55 p.m.80 views

CVE-2012-1756

Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors.

4CVSS5.4AI score0.00572EPSS
CVE
CVE
added 2015/10/21 11:59 p.m.80 views

CVE-2015-4866

Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

4CVSS5AI score0.00625EPSS
CVE
CVE
added 2016/07/21 10:12 a.m.80 views

CVE-2016-3459

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier and MariaDB 10.0.x before 10.0.25 and 10.1.x before 10.1.14 allows remote administrators to affect availability via vectors related to Server: InnoDB.

4.9CVSS5.2AI score0.00808EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.80 views

CVE-2017-3452

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.35 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Succes...

6.5CVSS6.1AI score0.00657EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.80 views

CVE-2017-3457

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful ...

4.9CVSS4.9AI score0.00333EPSS
CVE
CVE
added 2019/10/16 6:15 p.m.80 views

CVE-2019-2923

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to comprom...

5.3CVSS4.3AI score0.01795EPSS
CVE
CVE
added 2003/03/24 5:0 a.m.79 views

CVE-2003-0150

MySQL 3.23.55 and earlier creates world-writeable files and allows mysql users to gain root privileges by using the "SELECT * INFO OUTFILE" operator to overwrite a configuration file and cause mysql to run as root upon restart, as demonstrated by modifying my.cnf.

9CVSS6.3AI score0.12813EPSS
CVE
CVE
added 2003/09/22 4:0 a.m.79 views

CVE-2003-0780

Buffer overflow in get_salt_from_password from sql_acl.cc for MySQL 4.0.14 and earlier, and 3.23.x, allows attackers with ALTER TABLE privileges to execute arbitrary code via a long Password field.

9CVSS7.4AI score0.70046EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.79 views

CVE-2012-0120

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0119, CVE-2012-0485, and CVE-2012-0492.

4CVSS4.5AI score0.00716EPSS
CVE
CVE
added 2012/05/03 10:55 p.m.79 views

CVE-2012-0583

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.60 and earlier, and 5.5.19 and earlier, allows remote authenticated users to affect availability, related to MyISAM.

4CVSS4.4AI score0.00896EPSS
CVE
CVE
added 2015/04/16 4:59 p.m.79 views

CVE-2015-0500

Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors.

4CVSS7.7AI score0.00716EPSS
CVE
CVE
added 2016/01/21 3:0 a.m.79 views

CVE-2016-0504

Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0503.

6.8CVSS5.5AI score0.0183EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.79 views

CVE-2017-3465

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Ser...

4.3CVSS3.9AI score0.00283EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.79 views

CVE-2018-2583

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Stored Procedure). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MyS...

6.8CVSS6.1AI score0.00316EPSS
CVE
CVE
added 2012/05/03 10:55 p.m.78 views

CVE-2012-1697

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

4CVSS4.2AI score0.00678EPSS
CVE
CVE
added 2013/07/17 1:41 p.m.78 views

CVE-2013-3805

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Prepared Statements.

4CVSS5.1AI score0.00738EPSS
CVE
CVE
added 2013/10/16 5:55 p.m.78 views

CVE-2013-5807

Unspecified vulnerability in Oracle MySQL Server 5.5.x through 5.5.32 and 5.6.x through 5.6.12 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Replication.

4.9CVSS4.8AI score0.00338EPSS
CVE
CVE
added 2015/01/21 6:59 p.m.78 views

CVE-2015-0385

Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Pluggable Auth.

3.5CVSS6.1AI score0.00739EPSS
CVE
CVE
added 2017/04/24 7:59 p.m.78 views

CVE-2017-3459

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Succe...

4.9CVSS4.9AI score0.00333EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.78 views

CVE-2017-3643

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful at...

4.9CVSS4.6AI score0.00291EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.77 views

CVE-2012-0113

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and availability via unknown vectors, a different vulnerability than CVE-2012-0118.

5.5CVSS4.4AI score0.00716EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.77 views

CVE-2012-0115

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0119, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

4CVSS4.5AI score0.00716EPSS
CVE
CVE
added 2015/04/16 5:0 p.m.77 views

CVE-2015-2567

Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.

3.5CVSS5.2AI score0.00839EPSS
CVE
CVE
added 2015/07/16 11:0 a.m.77 views

CVE-2015-2641

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.

3.5CVSS4.5AI score0.0072EPSS
CVE
CVE
added 2016/04/21 10:59 a.m.77 views

CVE-2016-0652

Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to DML.

5.5CVSS4.7AI score0.00134EPSS
CVE
CVE
added 2017/10/19 5:29 p.m.77 views

CVE-2017-10320

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS4.7AI score0.00297EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.76 views

CVE-2012-0119

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0112, CVE-2012-0115, CVE-2012-0120, CVE-2012-0485, and CVE-2012-0492.

4CVSS4.5AI score0.00716EPSS
CVE
CVE
added 2013/01/17 1:55 a.m.76 views

CVE-2012-5096

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users with Server Privileges to affect availability via unknown vectors.

3.5CVSS4.5AI score0.00845EPSS
CVE
CVE
added 2012/12/03 12:49 p.m.76 views

CVE-2012-5614

Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.

4CVSS5AI score0.07532EPSS
CVE
CVE
added 2013/01/17 1:55 a.m.76 views

CVE-2013-0367

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Partition.

4CVSS4.3AI score0.00713EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.76 views

CVE-2017-3640

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful at...

4.9CVSS4.6AI score0.00291EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.76 views

CVE-2018-2576

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful atta...

6.8CVSS4.8AI score0.00591EPSS
CVE
CVE
added 2018/01/18 2:29 a.m.76 views

CVE-2018-2647

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise ...

7.5CVSS5.3AI score0.00702EPSS
CVE
CVE
added 2020/04/15 2:15 p.m.76 views

CVE-2020-2790

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.28 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

6.5CVSS6.2AI score0.00471EPSS
CVE
CVE
added 2023/10/17 10:15 p.m.76 views

CVE-2023-22095

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). The supported version that is affected is 8.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

6.5CVSS6.2AI score0.00125EPSS
CVE
CVE
added 2012/01/18 10:55 p.m.75 views

CVE-2012-0116

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

4.9CVSS4.2AI score0.00342EPSS
CVE
CVE
added 2013/07/17 1:41 p.m.75 views

CVE-2013-3811

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-3806.

3.5CVSS5.2AI score0.00717EPSS
CVE
CVE
added 2015/07/16 10:59 a.m.75 views

CVE-2015-2611

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.

4CVSS4.5AI score0.0077EPSS
CVE
CVE
added 2016/07/21 10:14 a.m.75 views

CVE-2016-3614

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption.

5.3CVSS5AI score0.0119EPSS
CVE
CVE
added 2017/08/08 3:29 p.m.75 views

CVE-2017-3634

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

6.5CVSS5.3AI score0.00375EPSS
CVE
CVE
added 2000/07/12 4:0 a.m.74 views

CVE-2000-0045

MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.

6.4CVSS6.4AI score0.0209EPSS
CVE
CVE
added 2006/06/19 6:2 p.m.74 views

CVE-2006-3081

mysqld in MySQL 4.1.x before 4.1.18, 5.0.x before 5.0.19, and 5.1.x before 5.1.6 allows remote authorized users to cause a denial of service (crash) via a NULL second argument to the str_to_date function.

4CVSS7.5AI score0.08107EPSS
CVE
CVE
added 2006/07/21 2:3 p.m.74 views

CVE-2006-3469

Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April 2006 allows remote authenticated users to cause a denial of service (crash) via a format string instead of a date as the first parameter to the date_format function, which is later used in a formatted pr...

4CVSS7.2AI score0.27044EPSS
CVE
CVE
added 2013/01/17 1:55 a.m.74 views

CVE-2012-0578

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

4CVSS4.3AI score0.00738EPSS
Total number of security vulnerabilities1325