Arbitrary Code Execution

2019-05-0205:04:50

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

MySQL is vulnerable to arbitrary code execution. An unspecified vulnerability allows remotely authenticated users to affect confidentiality, integrity and availability via vectors related to SERVER:DML.

CPENameOperatorVersion
mysql55-mysqleq5.5.36__2.el5
mysql55-mysqleq5.5.37__5.el6
mysql55-mysqleq5.5.32__2.el6
mysql55-mysqleq5.5.37__1.el5
mysql55-mysqleq5.5.36__1.1.el6
mysql55-mysqleq5.5.37__1.2.el6
mysql55-mysqleq5.5.32__3.el5
mariadb-galeraeq5.5.37__7.el7ost
mariadb-galeraeq5.5.37__8.el6ost
mariadb55-mariadbeq5.5.37__9.el6

Name	Operator	Version
mysql55-mysql	eq	5.5.36__2.el5
mysql55-mysql	eq	5.5.37__5.el6
mysql55-mysql	eq	5.5.32__2.el6
mysql55-mysql	eq	5.5.37__1.el5
mysql55-mysql	eq	5.5.36__1.1.el6
mysql55-mysql	eq	5.5.37__1.2.el6
mysql55-mysql	eq	5.5.32__3.el5
mariadb-galera	eq	5.5.37__7.el7ost
mariadb-galera	eq	5.5.37__8.el6ost
mariadb55-mariadb	eq	5.5.37__9.el6