Lucene search

[email protected]CVE-2016-0642

HistoryApr 21, 2016 - 10:59 a.m.

CVE-2016-0642

2016-04-2110:59:11

[email protected]

web.nvd.nist.gov

cve-2016-0642

oracle mysql

vulnerability

integrity

availability

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:M/C:N/I:P/A:P

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated.

Affected configurations

NVD

Node

oraclemysqlRange5.5.0–5.5.48

oraclemysqlRange5.6.0–5.6.29

oraclemysqlRange5.7.0–5.7.11

Node

suselinux_enterprise_debuginfoMatch11sp4

opensuseleapMatch42.1

opensuseopensuseMatch13.2

suselinux_enterprise_desktopMatch12-

suselinux_enterprise_desktopMatch12sp1

suselinux_enterprise_serverMatch11sp4

suselinux_enterprise_serverMatch12-

suselinux_enterprise_serverMatch12sp1

suselinux_enterprise_software_development_kitMatch11sp4

suselinux_enterprise_software_development_kitMatch12-

suselinux_enterprise_software_development_kitMatch12sp1

suselinux_enterprise_workstation_extensionMatch12

suselinux_enterprise_workstation_extensionMatch12sp1

Node

redhatenterprise_linux_desktopMatch7.0

redhatenterprise_linux_eusMatch7.2

redhatenterprise_linux_eusMatch7.3

redhatenterprise_linux_eusMatch7.4

redhatenterprise_linux_eusMatch7.5

redhatenterprise_linux_eusMatch7.6

redhatenterprise_linux_eusMatch7.7

redhatenterprise_linux_serverMatch7.0

redhatenterprise_linux_server_ausMatch7.2

redhatenterprise_linux_server_ausMatch7.3

redhatenterprise_linux_server_ausMatch7.4

redhatenterprise_linux_server_ausMatch7.6

redhatenterprise_linux_server_ausMatch7.7

redhatenterprise_linux_server_tusMatch7.2

redhatenterprise_linux_server_tusMatch7.3

redhatenterprise_linux_server_tusMatch7.6

redhatenterprise_linux_server_tusMatch7.7

redhatenterprise_linux_workstationMatch7.0

Node

mariadbmariadbRange5.5.0–5.5.47

mariadbmariadbRange10.0.0–10.0.23

mariadbmariadbRange10.1.0–10.1.10

Node

debiandebian_linuxMatch8.0

Node

canonicalubuntu_linuxMatch12.04-

canonicalubuntu_linuxMatch14.04esm

canonicalubuntu_linuxMatch15.10

canonicalubuntu_linuxMatch16.04esm

CPENameOperatorVersion
oracle:mysqloracle mysqlle5.5.48
oracle:mysqloracle mysqlle5.6.29
oracle:mysqloracle mysqlle5.7.11

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	le	5.5.48
oracle:mysql	oracle mysql	le	5.6.29
oracle:mysql	oracle mysql	le	5.7.11

References

lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html

lists.opensuse.org/opensuse-security-announce/2016-05/msg00053.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00034.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00051.html

lists.opensuse.org/opensuse-security-announce/2016-06/msg00053.html

rhn.redhat.com/errata/RHSA-2016-0534.html

rhn.redhat.com/errata/RHSA-2016-0705.html

rhn.redhat.com/errata/RHSA-2016-1480.html

rhn.redhat.com/errata/RHSA-2016-1481.html

www.debian.org/security/2016/dsa-3557

www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

www.securityfocus.com/bid/86445

www.securitytracker.com/id/1035606

www.ubuntu.com/usn/USN-2953-1

www.ubuntu.com/usn/USN-2954-1

access.redhat.com/errata/RHSA-2016:1132

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:M/C:N/I:P/A:P

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

4.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2016-0642

prion1 ubuntucve1 mariadbunix1 nvd1 cvelist1 veracode1 openvas18 nessus30 fedora2 amazon2 debian3 osv1 ubuntu2 suse6 f52 centos1 ibm1 redhat5 kaspersky1 freebsd1 oracle1