CVE-2014-6478 — Oracle Mysql vulnerability

10 documents8 sources

Severity

4.3MEDIUMNVD

EPSS

0.5%

top 34.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Juniper Junos Space Oracle Mysql +5 more

Timeline

PublishedOct 15

Latest updateMay 14

Description

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages8 packages

▶NVDoracle/mysql5.5.0 — 5.5.38+1

▶NVDsuse/linux_enterprise_server12

▶NVDoracle/solaris11.3

▶NVDmariadb/mariadb5.5.0 — 5.5.39+1

▶NVDjuniper/junos_space15.1

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-xfqx-2ffg-8vc4: Unspecified vulnerability in Oracle MySQL Server 5↗2022-05-14

▶

OSV

CVE-2014-6478: Unspecified vulnerability in Oracle MySQL Server 5↗2014-10-15

▶

CVEList

CVE-2014-6478: Unspecified vulnerability in Oracle MySQL Server 5↗2014-10-15

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2014-10-15

▶

Red Hat

mysql: unspecified vulnerability related to SERVER:SSL:yaSSL (CPU October 2014)↗2014-10-15

▶

Debian

CVE-2014-6478: wolfssl - Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 ...↗2014

▶

💬Community

Bugzilla

CVE-2014-6478 mysql: unspecified vulnerability related to SERVER:SSL:yaSSL (CPU October 2014)↗2014-10-16

▶

Bugzilla

CVE-2013-6483 CVE-2013-6482 CVE-2013-6481 CVE-2013-6487 CVE-2013-6485 CVE-2013-6484 CVE-2013-6489 CVE-2014-0020 CVE-2013-6477 CVE-2012-6152 CVE-2013-6478 CVE-2013-6479 CVE-2013-6490 pidgin: various fl↗2014-01-29

▶

Bugzilla

CVE-2013-6478 pidgin: DoS when rendering long URLs↗2014-01-23

▶