CVE-2013-3805 — Oracle Mysql vulnerability

5 documents5 sources

Severity

4.0MEDIUMNVD

EPSS

0.6%

top 29.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Opensuse +4 more

Timeline

PublishedJul 17

Latest updateMay 13

Description

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Prepared Statements.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages7 packages

▶NVDoracle/mysql5.5.0 — 5.5.30+1

▶NVDoracle/solaris11.3

▶NVDsuse/linux_enterprise_server11

▶NVDmariadb/mariadb5.5.0 — 5.5.31+1

▶NVDopensuse/opensuse11.4, 12.2, 12.3+2

🔴Vulnerability Details

GHSA

GHSA-6cpc-v73f-92mp: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2022-05-13

▶

CVEList

CVE-2013-3805: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2013-07-17

▶

📋Vendor Advisories

Red Hat

mysql: unspecified DoS related to Prepared Statements (CPU July 2013)↗2013-07-17

▶

💬Community

Bugzilla

CVE-2013-3805 mysql: unspecified DoS related to Prepared Statements (CPU July 2013)↗2013-07-18

▶