Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs

1,328

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 55 of 67

CVE-2014-2430LOWCVSS 3.5≥ 5.5.0, ≤ 5.5.36≥ 5.6.0, ≤ 5.6.162014-04-16

CVE-2014-2430 [LOW] CVE-2014-2430: Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows re Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.

nvd

CVE-2014-2432LOWCVSS 2.8≥ 5.5.0, ≤ 5.5.35≥ 5.6.0, ≤ 5.6.152014-04-16

CVE-2014-2432 [LOW] CVE-2014-2432: Unspecified vulnerability Oracle the MySQL Server component 5.5.35 and earlier and 5.6.15 and earlie Unspecified vulnerability Oracle the MySQL Server component 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Federated.

nvd

CVE-2014-0001HIGHCVSS 7.5v5.5.0v5.5.1+51 more2014-01-31

CVE-2014-0001 [HIGH] CWE-119 CVE-2014-0001: Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.

nvd

CVE-2013-5891MEDIUMCVSS 4.0≥ 5.5.0, ≤ 5.5.33≥ 5.6.0, ≤ 5.6.132014-01-15

CVE-2013-5891 [MEDIUM] CVE-2013-5891: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.1 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

nvd

CVE-2013-5894MEDIUMCVSS 4.0≤ 5.6.13v5.6.0+12 more2014-01-15

CVE-2013-5894 [MEDIUM] CVE-2013-5894: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

nvd

CVE-2013-5882MEDIUMCVSS 6.8≤ 5.6.13v5.6.0+12 more2014-01-15

CVE-2013-5882 [MEDIUM] CVE-2013-5882: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Stored Procedures.

nvd

CVE-2013-5881MEDIUMCVSS 4.0≤ 5.6.14v5.6.0+13 more2014-01-15

CVE-2013-5881 [MEDIUM] CVE-2013-5881: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2014-0431.

nvd

CVE-2014-0402MEDIUMCVSS 4.0≥ 5.1.0, ≤ 5.1.71≥ 5.5.0, ≤ 5.5.33+1 more2014-01-15

CVE-2014-0402 [MEDIUM] CVE-2014-0402: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Locking.

nvd

CVE-2014-0401MEDIUMCVSS 4.0≥ 5.1.0, ≤ 5.1.72≥ 5.5.0, ≤ 5.5.34+1 more2014-01-15

CVE-2014-0401 [MEDIUM] CVE-2014-0401: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors.

nvd

CVE-2014-0433MEDIUMCVSS 4.3≤ 5.6.13v5.6.0+12 more2014-01-15

CVE-2014-0433 [MEDIUM] CVE-2014-0433: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote attackers to affect availability via unknown vectors related to Thread Pooling.

nvd

CVE-2013-5860MEDIUMCVSS 6.8≤ 5.6.14v5.6.0+13 more2014-01-15

CVE-2013-5860 [MEDIUM] CVE-2013-5860: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS.

nvd

CVE-2014-0386MEDIUMCVSS 4.0≥ 5.1.0, ≤ 5.1.71≥ 5.5.0, ≤ 5.5.33+1 more2014-01-15

CVE-2014-0386 [MEDIUM] CVE-2014-0386: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

nvd

CVE-2014-0412MEDIUMCVSS 4.0≥ 5.1.0, ≤ 5.1.72≥ 5.5.0, ≤ 5.5.34+1 more2014-01-15

CVE-2014-0412 [MEDIUM] CVE-2014-0412: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

nvd

CVE-2014-0393LOWCVSS 3.3≥ 5.1.0, ≤ 5.1.71≥ 5.5.0, ≤ 5.5.33+1 more2014-01-15

CVE-2014-0393 [LOW] CVE-2014-0393: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect integrity via unknown vectors related to InnoDB.

nvd

CVE-2014-0427LOWCVSS 3.5≤ 5.6.13v5.6.0+12 more2014-01-15

CVE-2014-0427 [LOW] CVE-2014-0427: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via vectors related to FTS.

nvd

CVE-2014-0420LOWCVSS 2.8≥ 5.5.0, ≤ 5.5.34≥ 5.6.0, ≤ 5.6.142014-01-15

CVE-2014-0420 [LOW] CVE-2014-0420: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.34 and earlier, and 5.6. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.34 and earlier, and 5.6.14 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Replication.

nvd

CVE-2014-0437LOWCVSS 3.5≥ 5.1.0, < 5.1.72≥ 5.5.0, < 5.5.34+1 more2014-01-15

CVE-2014-0437 [LOW] CVE-2014-0437: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

nvd

CVE-2014-0430LOWCVSS 2.8≤ 5.6.13v5.6.0+12 more2014-01-15

CVE-2014-0430 [LOW] CVE-2014-0430: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.

nvd

CVE-2014-0431LOWCVSS 3.5≤ 5.6.14v5.6.0+13 more2014-01-15

CVE-2014-0431 [LOW] CVE-2014-0431: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows re Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-5881.

nvd

CVE-2013-5908LOWCVSS 2.6≥ 5.1.0, ≤ 5.1.72≥ 5.5.0, ≤ 5.5.34+1 more2014-01-15

CVE-2013-5908 [LOW] CVE-2013-5908: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 a Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote attackers to affect availability via unknown vectors related to Error Handling.

nvd

← Previous55 / 67Next →