Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs
1,328
CISA KEV
0
Public exploits
50
Exploited in wild
0
Severity breakdown
CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 67 of 67
CVE-2001-1453HIGHCVSS 7.5v3.23.322001-02-09
CVE-2001-1453 [HIGH] CVE-2001-1453: Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.
nvd
CVE-2001-1454HIGHCVSS 7.5≤ 3.23.322001-02-09
CVE-2001-1454 [HIGH] CVE-2001-1454: Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request.
nvd
CVE-2001-1274HIGHCVSS 7.5PoC≤ 3.23.312001-01-23
CVE-2001-1274 [HIGH] CVE-2001-1274: Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly g Buffer overflow in MySQL before 3.23.31 allows attackers to cause a denial of service and possibly gain privileges.
nvd
CVE-2001-1275HIGHCVSS 7.2≤ 3.23.312001-01-19
CVE-2001-1275 [HIGH] CVE-2001-1275: MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the MySQL before 3.23.31 allows users with a MySQL account to use the SHOW GRANTS command to obtain the encrypted administrator password from the mysql.user table and possibly gain privileges via password cracking.
nvd
CVE-2000-0981HIGHCVSS 7.2v3.20v3.21+2 more2000-12-19
CVE-2000-0981 [HIGH] CVE-2000-0981: MySQL Database Engine uses a weak authentication method which leaks information that could be used b MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.
nvd
CVE-2000-0148HIGHCVSS 7.5v3.22.26v3.22.27+5 more2000-02-08
CVE-2000-0148 [HIGH] CVE-2000-0148: MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a sho MySQL 3.22 allows remote attackers to bypass password authentication and access a database via a short check string.
nvd
CVE-2000-0045MEDIUMCVSS 6.4PoCv3.22.27v3.22.29+1 more2000-01-11
CVE-2000-0045 [MEDIUM] CVE-2000-0045: MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege. MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
nvd
CVE-1999-1188MEDIUMCVSS 4.6v3.211998-12-27
CVE-1999-1188 [MEDIUM] CVE-1999-1188: mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.
nvd
← Previous67 / 67