CVE-2014-0401 — Oracle Mysql vulnerability

9 documents6 sources

Severity

4.0MEDIUMNVD

EPSS

0.4%

top 38.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Canonical Ubuntu Linux +7 more

Timeline

PublishedJan 15

Latest updateMay 13

Description

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages5 packages

▶NVDoracle/mysql5.1.0 — 5.1.72+2

▶NVDredhat/enterprise_linux_server5.0, 6.0+1

▶NVDmariadb/mariadb5.5.0 — 5.5.35+1

▶NVDredhat/enterprise_linux_desktop5.0, 6.0+1

▶NVDredhat/enterprise_linux_workstation5.0, 6.0+1

Also affects: Debian Linux 6.0, 7.0, Ubuntu Linux 10.04, 12.04, 12.10, 13.10, Enterprise Linux 6.5

🔴Vulnerability Details

GHSA

GHSA-jpqc-2xr8-9gh2: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2022-05-13

▶

CVEList

CVE-2014-0401: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5↗2014-01-15

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2014-01-21

▶

Red Hat

mysql: unspecified DoS vulnerability (CPU Jan 2014)↗2014-01-14

▶

💬Community

Bugzilla

CVE-2014-0412 CVE-2014-0437 CVE-2013-5908 CVE-2014-0420 CVE-2014-0393 CVE-2013-5891 CVE-2014-0386 CVE-2014-0401 CVE-2014-0402 community-mysql: various flaws [fedora-all]↗2014-01-16

▶

Bugzilla

CVE-2014-0412 CVE-2014-0437 CVE-2013-5908 CVE-2014-0420 CVE-2014-0393 CVE-2013-5891 CVE-2014-0386 CVE-2014-0401 CVE-2014-0402 mariadb: various flaws [fedora-all]↗2014-01-16

▶

Bugzilla

CVE-2014-0401 mysql: unspecified DoS vulnerability (CPU Jan 2014)↗2014-01-15

▶

Bugzilla

CVE-2013-0401 OpenJDK: sun.awt.datatransfer.ClassLoaderObjectInputStream class may incorrectly invoke the system class loader (CanSecWest 2013, AWT, 8009305)↗2013-03-11

▶