CVE-2013-0385 — Oracle Mysql vulnerability

5 documents5 sources

Severity

6.6MEDIUMNVD

EPSS

0.1%

top 78.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Canonical Ubuntu Linux +4 more

Timeline

PublishedJan 17

Latest updateMay 5

Description

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users to affect confidentiality and integrity via unknown vectors related to Server Replication.

CVSS vector

AV:L/AC:L/C:C/I:C/A:NExploitability: 3.9 | Impact: 9.2

Affected Packages5 packages

▶NVDoracle/mysql5.1.0 — 5.1.66+1

▶NVDredhat/enterprise_linux_server6.0

▶NVDmariadb/mariadb5.1.0 — 5.1.67+4

▶NVDredhat/enterprise_linux_desktop6.0

▶NVDredhat/enterprise_linux_workstation6.0

Also affects: Ubuntu Linux 10.04, 11.10, 12.04, 12.10, Enterprise Linux 6.3

🔴Vulnerability Details

GHSA

GHSA-5f2m-cwqf-8773: Unspecified vulnerability in the Server component in Oracle MySQL 5↗2022-05-05

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2013-01-22

▶

Red Hat

mysql: Unspecified vulnerability in the server replication of the Oracle MySQL server allows local attackers to alter confidentiality and integrity↗2013-01-15

▶

💬Community

Bugzilla

CVE-2013-0385 mysql: Unspecified vulnerability in the server replication of the Oracle MySQL server allows local attackers to alter confidentiality and integrity↗2013-01-16

▶