Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs

1,328

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 54 of 67

CVE-2014-4260MEDIUMCVSS 5.5≥ 5.5.0, ≤ 5.5.37≥ 5.6.0, ≤ 5.6.172014-07-17

CVE-2014-4260 [MEDIUM] CVE-2014-4260: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR.

nvd

CVE-2014-4258MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.37≥ 5.6.0, ≤ 5.6.172014-07-17

CVE-2014-4258 [MEDIUM] CVE-2014-4258: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.1 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRINFOSC.

nvd

CVE-2014-4207MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.372014-07-17

CVE-2014-4207 [MEDIUM] CVE-2014-4207: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR.

nvd

CVE-2014-4233MEDIUMCVSS 4.0≤ 5.6.17v5.6.0+16 more2014-07-17

CVE-2014-4233 [MEDIUM] CVE-2014-4233: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SRREP.

nvd

CVE-2014-4238MEDIUMCVSS 4.0≤ 5.6.17v5.6.0+16 more2014-07-17

CVE-2014-4238 [MEDIUM] CVE-2014-4238: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SROPTZR.

nvd

CVE-2014-4214LOWCVSS 3.3≤ 5.6.17v5.6.0+16 more2014-07-17

CVE-2014-4214 [LOW] CVE-2014-4214: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows remote authenticated users to affect availability via vectors related to SRSP.

nvd

CVE-2014-4240LOWCVSS 3.6≤ 5.6.17v5.6.0+16 more2014-07-17

CVE-2014-4240 [LOW] CVE-2014-4240: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows lo Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.17 and earlier allows local users to affect confidentiality and integrity via vectors related to SRREP.

nvd

CVE-2014-4243LOWCVSS 2.8≥ 5.5.0, ≤ 5.5.35≥ 5.6.0, ≤ 5.6.152014-07-17

CVE-2014-4243 [LOW] CVE-2014-4243: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.1 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to ENFED.

nvd

CVE-2014-2434MEDIUMCVSS 4.0≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2434 [MEDIUM] CVE-2014-2434: Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to DML.

nvd

CVE-2014-0384MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.35≥ 5.6.0, ≤ 5.6.152014-04-16

CVE-2014-0384 [MEDIUM] CVE-2014-0384: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.1 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML.

nvd

CVE-2014-2444MEDIUMCVSS 6.5≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2444 [MEDIUM] CVE-2014-2444: Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to InnoDB.

nvd

CVE-2014-2442MEDIUMCVSS 4.0≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2442 [MEDIUM] CVE-2014-2442: Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to MyISAM.

nvd

CVE-2014-2436MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.36≥ 5.6.0, ≤ 5.6.162014-04-16

CVE-2014-2436 [MEDIUM] CVE-2014-2436: Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR.

nvd

CVE-2014-2450MEDIUMCVSS 4.0≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2450 [MEDIUM] CVE-2014-2450: Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

nvd

CVE-2014-2440MEDIUMCVSS 5.1≥ 5.5.0, ≤ 5.5.36≥ 5.6.0, ≤ 5.6.162014-04-16

CVE-2014-2440 [MEDIUM] CVE-2014-2440: Unspecified vulnerability in the MySQL Client component in Oracle MySQL 5.5.36 and earlier and 5.6.1 Unspecified vulnerability in the MySQL Client component in Oracle MySQL 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

nvd

CVE-2014-2419MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.35≥ 5.6.0, ≤ 5.6.152014-04-16

CVE-2014-2419 [MEDIUM] CVE-2014-2419: Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

nvd

CVE-2014-2435MEDIUMCVSS 4.0≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2435 [MEDIUM] CVE-2014-2435: Unspecified vulnerability in Oracle MySQL Server 5.6.16 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

nvd

CVE-2014-2438LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.35≥ 5.6.0, ≤ 5.6.152014-04-16

CVE-2014-2438 [LOW] CVE-2014-2438: Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication.

nvd

CVE-2014-2431LOWCVSS 2.6≥ 5.5.0, ≤ 5.5.36≥ 5.6.0, ≤ 5.6.162014-04-16

CVE-2014-2431 [LOW] CVE-2014-2431: Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect availability via unknown vectors related to Options.

nvd

CVE-2014-2451LOWCVSS 3.5≤ 5.6.15v5.6.0+14 more2014-04-16

CVE-2014-2451 [LOW] CVE-2014-2451: Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated user Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Privileges.

nvd

← Previous54 / 67Next →