Lucene search
Ubuntu.comUB:CVE-2014-4987HistoryJul 20, 2014 - 12:00 a.m.
CVE-2014-4987
2014-07-2000:00:00
ubuntu.com
ubuntu.com
20
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
53.9%
server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x before
4.2.6 allows remote authenticated users to bypass intended access
restrictions and read the MySQL user list via a viewUsers request.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 14.04 | noarch | phpmyadmin | < any | UNKNOWN |
References
Related
openvas
openvas
phpMyAdmin Bypass Restriction Vulnerability (PMASA-2014-7) - Windows
2017-08-21 00:00:00
phpMyAdmin Bypass Restriction Vulnerability (PMASA-2014-7) - Linux
2017-08-21 00:00:00
Mageia: Security Advisory (MGASA-2014-0310)
2022-01-28 00:00:00
phpmyadmin
phpmyadmin
Access for an unprivileged user to MySQL user list.
2014-07-17 00:00:00
cve
cve
CVE-2014-4987
2014-07-20 11:12:51
debiancve
debiancve
CVE-2014-4987
2014-07-20 11:12:51
nvd
nvd
CVE-2014-4987
2014-07-20 11:12:51
prion
prion
Design/Logic Flaw
2014-07-20 11:12:00
cvelist
cvelist
CVE-2014-4987
2014-07-20 10:00:00
mageia
mageia
Updated phpmyadmin package fixes security vulnerabilities
2014-08-06 00:08:48
nessus
nessus
freebsd
freebsd
phpMyAdmin -- multiple XSS vulnerabilities, missing validation
2014-07-18 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:143 ] phpmyadmin
2014-10-14 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2015-05-31 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.002
Percentile
53.9%
Related for UB:CVE-2014-4987