CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
84.9%
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and
5.6.20 and earlier allows remote attackers to affect confidentiality,
integrity, and availability via vectors related to SERVER:SSL:yaSSL, a
different vulnerability than CVE-2014-6500.
Author | Note |
---|---|
mdeslaur | no indication that 5.1 is vulnerable, and no details, so marking as not-affected for now. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | mariadb-5.5 | < 5.5.40-0ubuntu0.14.04.1 | UNKNOWN |
ubuntu | 14.10 | noarch | mariadb-5.5 | < 5.5.40-0ubuntu0.14.10.1 | UNKNOWN |
ubuntu | 12.04 | noarch | mysql-5.5 | < 5.5.40-0ubuntu0.12.04.1 | UNKNOWN |
ubuntu | 14.04 | noarch | mysql-5.5 | < 5.5.40-0ubuntu0.14.04.1 | UNKNOWN |
ubuntu | 14.04 | noarch | mysql-5.6 | < 5.6.27-0ubuntu0.14.04.1 | UNKNOWN |