CVE-2012-1690 — Oracle Mysql vulnerability

8 documents4 sources

Severity

6.8MEDIUMNVD

NVD4.0

EPSS

0.7%

top 27.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Redhat Enterprise Linux Desktop +5 more

Timeline

PublishedMay 3

Latest updateMay 13

Description

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer, a different vulnerability than CVE-2012-1703.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages6 packages

▶NVDoracle/mysql5.1.0 — 5.1.61+1

▶NVDredhat/enterprise_linux_server6.0

▶NVDmariadb/mariadb5.1.0 — 5.1.62+1

▶NVDredhat/enterprise_linux_desktop6.0

▶NVDredhat/enterprise_linux_hpc_node6.0

Also affects: Enterprise Linux 6.3, 6.3.z

🔴Vulnerability Details

GHSA

GHSA-6xhq-pwm3-5877: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2022-05-13

▶

GHSA

GHSA-3prr-gr45-j95v: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2022-05-13

▶

📋Vendor Advisories

Red Hat

mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Apr 2012)↗2012-04-17

▶

Red Hat

mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Apr 2012)↗2012-04-17

▶

💬Community

Bugzilla

mysql: Oracle CPU April 2012↗2012-06-15

▶

Bugzilla

CVE-2012-1690 mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Apr 2012)↗2012-04-19

▶