Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs

1,328

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 52 of 67

CVE-2015-0511LOWCVSS 2.8≤ 5.6.232015-04-16

CVE-2015-0511 [LOW] CVE-2015-0511: Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : SP.

nvd

CVE-2015-0498LOWCVSS 1.7≤ 5.6.232015-04-16

CVE-2015-0498 [LOW] CVE-2015-0498: Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication.

nvd

CVE-2015-0499LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.42≥ 5.6.0, ≤ 5.6.232015-04-16

CVE-2015-0499 [LOW] CVE-2015-0499: Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.

nvd

CVE-2015-2576LOWCVSS 2.1≤ 1.5.12015-04-16

CVE-2015-2576 [LOW] CVE-2015-2576: Unspecified vulnerability in the MySQL Utilities component in Oracle MySQL 1.5.1 and earlier, when r Unspecified vulnerability in the MySQL Utilities component in Oracle MySQL 1.5.1 and earlier, when running on Windows, allows local users to affect integrity via unknown vectors related to Installation.

nvd

CVE-2015-0506LOWCVSS 3.5≤ 5.6.232015-04-16

CVE-2015-0506 [LOW] CVE-2015-0506: Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2015-0508.

nvd

CVE-2015-0505LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.42≥ 5.6.0, ≤ 5.6.232015-04-16

CVE-2015-0505 [LOW] CVE-2015-0505: Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.

nvd

CVE-2015-0507LOWCVSS 3.5≤ 5.6.232015-04-16

CVE-2015-0507 [LOW] CVE-2015-0507: Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached.

nvd

CVE-2015-0411HIGHCVSS 7.5≥ 5.5.0, ≤ 5.5.40≥ 5.6.0, ≤ 5.6.212015-01-21

CVE-2015-0411 [HIGH] CVE-2015-0411: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Server : Security : Encryption.

nvd

CVE-2015-0381MEDIUMCVSS 4.3≥ 5.5.0, ≤ 5.5.40≥ 5.6.0, ≤ 5.6.212015-01-21

CVE-2015-0381 [MEDIUM] CVE-2015-0381: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0382.

nvd

CVE-2015-0382MEDIUMCVSS 4.3≥ 5.5.0, ≤ 5.5.40≥ 5.6.0, ≤ 5.6.212015-01-21

CVE-2015-0382 [MEDIUM] CVE-2015-0382: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a different vulnerability than CVE-2015-0381.

nvd

CVE-2015-0391MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.38≥ 5.6.0, ≤ 5.6.192015-01-21

CVE-2015-0391 [MEDIUM] CVE-2015-0391: Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.

nvd

CVE-2015-0409MEDIUMCVSS 4.0≤ 5.6.212015-01-21

CVE-2015-0409 [MEDIUM] CVE-2015-0409: Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

nvd

CVE-2015-0432MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.402015-01-21

CVE-2015-0432 [MEDIUM] CVE-2015-0432: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.

nvd

CVE-2015-0385LOWCVSS 3.5≤ 5.6.212015-01-21

CVE-2015-0385 [LOW] CVE-2015-0385: Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Pluggable Auth.

nvd

CVE-2014-6568LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.40≥ 5.6.0, ≤ 5.6.212015-01-21

CVE-2014-6568 [LOW] CVE-2014-6568: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.

nvd

CVE-2015-0374LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.40≥ 5.6.0, ≤ 5.6.212015-01-21

CVE-2015-0374 [LOW] CVE-2015-0374: Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.

nvd

CVE-2014-6500HIGHCVSS 7.5≥ 5.5.0, ≤ 5.5.39≥ 5.6.0, ≤ 5.6.202014-10-15

CVE-2014-6500 [HIGH] CVE-2014-6500: Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6491.

nvd

CVE-2014-6491HIGHCVSS 7.5≥ 5.5.0, ≤ 5.5.39≥ 5.6.0, ≤ 5.6.202014-10-15

CVE-2014-6491 [HIGH] CVE-2014-6491: Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6500.

nvd

CVE-2014-6478MEDIUMCVSS 4.3≥ 5.5.0, ≤ 5.5.38≥ 5.6.0, ≤ 5.6.192014-10-15

CVE-2014-6478 [MEDIUM] CVE-2014-6478: Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.

nvd

CVE-2014-6505MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.38≥ 5.6.0, ≤ 5.6.192014-10-15

CVE-2014-6505 [MEDIUM] CVE-2014-6505: Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:MEMORY STORAGE ENGINE.

nvd

← Previous52 / 67Next →