Lucene search

[email protected]CVE-2014-2430

HistoryApr 16, 2014 - 2:55 a.m.

CVE-2014-2430

2014-04-1602:55:15

[email protected]

web.nvd.nist.gov

cve-2014-2430

oracle

mysql

server

vulnerability

remote authenticated users

availability

performance schema

nvd

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

3.9 Low

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.

Affected configurations

NVD

Node

oraclemysqlRange5.5.0–5.5.36

oraclemysqlRange5.6.0–5.6.16

Node

oraclesolarisMatch11.3

Node

mariadbmariadbRange5.5.0–5.5.37

mariadbmariadbRange10.0.0–10.0.11

Node

redhatenterprise_linux_desktopMatch5.0

redhatenterprise_linux_desktopMatch7.0

redhatenterprise_linux_eusMatch7.3

redhatenterprise_linux_eusMatch7.4

redhatenterprise_linux_eusMatch7.5

redhatenterprise_linux_eusMatch7.6

redhatenterprise_linux_eusMatch7.7

redhatenterprise_linux_serverMatch5.0

redhatenterprise_linux_serverMatch7.0

redhatenterprise_linux_server_ausMatch7.3

redhatenterprise_linux_server_ausMatch7.4

redhatenterprise_linux_server_ausMatch7.6

redhatenterprise_linux_server_ausMatch7.7

redhatenterprise_linux_server_tusMatch7.3

redhatenterprise_linux_server_tusMatch7.6

redhatenterprise_linux_server_tusMatch7.7

redhatenterprise_linux_workstationMatch5.0

redhatenterprise_linux_workstationMatch7.0

CPENameOperatorVersion
oracle:mysqloracle mysqlle5.5.36
oracle:mysqloracle mysqlle5.6.16

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	le	5.5.36
oracle:mysql	oracle mysql	le	5.6.16

References

rhn.redhat.com/errata/RHSA-2014-0522.html

rhn.redhat.com/errata/RHSA-2014-0536.html

rhn.redhat.com/errata/RHSA-2014-0537.html

rhn.redhat.com/errata/RHSA-2014-0702.html

security.gentoo.org/glsa/glsa-201409-04.xml

www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

www.securityfocus.com/bid/66858

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

3.9 Low

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.9%

JSON

Related for CVE-2014-2430

prion1 nvd1 cvelist1 mariadbunix1 ubuntucve1 openvas30 nessus25 redhat4 centos3 veracode4 oraclelinux3 slackware1 amazon1 fedora9 mageia1 osv1 debian2 ubuntu1 suse1 gentoo1 oracle1 securityvulns1