CVE-2014-4258

EPSS 0.57%
Veröffentlicht 17.07.2014 11:17:10
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle secalert_us@oracle.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRINFOSC.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Oracle ≫ Mysql Version >= 5.5.0 <= 5.5.37

Oracle ≫ Mysql Version >= 5.6.0 <= 5.6.17

VMware ≫ Vcenter Server Appliance Version5.0

VMware ≫ Vcenter Server Appliance Version5.0 Updateupdate_1

VMware ≫ Vcenter Server Appliance Version5.0 Updateupdate_2

VMware ≫ Vcenter Server Appliance Version5.1

VMware ≫ Vcenter Server Appliance Version5.1 Updateupdate_1

VMware ≫ Vcenter Server Appliance Version5.1 Updateupdate_2

VMware ≫ Vcenter Server Appliance Version5.5

VMware ≫ Vcenter Server Appliance Version5.5 Updateupdate_1

Oracle ≫ Solaris Version11.3

Opensuse Project ≫ Suse Linux Enterprise Desktop Version11.0 Updatesp3

Opensuse Project ≫ Suse Linux Enterprise Server Version11.0 Updatesp3

Opensuse Project ≫ Suse Linux Enterprise Server Version11.0 Updatesp3 SwPlatformvmware

Opensuse Project ≫ Suse Linux Enterprise Software Development Kit Version11.0 Updatesp3

Debian ≫ Debian Linux Version7.0

Mariadb ≫ Mariadb Version >= 5.5.0 < 5.5.38

Mariadb ≫ Mariadb Version >= 10.0.0 < 10.0.12

Suse ≫ Linux Enterprise Desktop Version11 Updatesp3

Suse ≫ Linux Enterprise Desktop Version12 Update-

Suse ≫ Linux Enterprise Server Version11 Updatesp3 SwPlatform-

Suse ≫ Linux Enterprise Server Version11 Updatesp3 SwPlatformvmware

Suse ≫ Linux Enterprise Server Version12 Update-

Suse ≫ Linux Enterprise Software Development Kit Version11 Updatesp3

Suse ≫ Linux Enterprise Software Development Kit Version12 Update-

Suse ≫ Linux Enterprise Workstation Extension Version12

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.57%	0.678

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html

Third Party Advisory

Mailing List

http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

Vendor Advisory

http://seclists.org/fulldisclosure/2014/Dec/23

Third Party Advisory

Mailing List

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Vendor Advisory

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Third Party Advisory

VDB Entry

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2014-08/msg00012.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/60425

Not Applicable

http://www.securitytracker.com/id/1030578

Third Party Advisory

Broken Link

VDB Entry

http://www.debian.org/security/2014/dsa-2985

Third Party Advisory

http://www.securityfocus.com/bid/68564

Third Party Advisory

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/94620

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2014-4258

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-4258

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-4258

EUVD