CVE-2014-2436: Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality…

medium6.5CVSS 3.1

AVNACLAuSCPIPAP

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR.

Affected

23 ranges

Vendor	Product	Version range	Fixed in
mariadb	mariadb	>= 10.0.0 < 10.0.11	10.0.11
mariadb	mariadb	>= 5.5.0 < 5.5.37	5.5.37
oracle	mysql	5.5.0 – 5.5.36	—
oracle	mysql	5.6.0 – 5.6.16	—
oracle	solaris	—	—
redhat	enterprise_linux_desktop	—	—
redhat	enterprise_linux_desktop	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_eus	—	—
redhat	enterprise_linux_server	—	—
redhat	enterprise_linux_server	—	—
redhat	enterprise_linux_server_aus	—	—
redhat	enterprise_linux_server_aus	—	—
redhat	enterprise_linux_server_aus	—	—
redhat	enterprise_linux_server_aus	—	—
redhat	enterprise_linux_server_tus	—	—
redhat	enterprise_linux_server_tus	—	—
redhat	enterprise_linux_server_tus	—	—
redhat	enterprise_linux_workstation	—	—
redhat	enterprise_linux_workstation	—	—

CVSS provenance

nvd6.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P

osv6.5MEDIUM