CVE-2014-4258

Published Jul 17, 2014
Last updated 3 months ago
CVSS info 6.5
Overview

Description: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier and 5.6.17 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SRINFOSC.
Source: secalert_us@oracle.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "336AF3D4-E99E-4CF4-AEF8-7DB7548C74EF",
            "versionEndIncluding": "5.5.37",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D63D31FB-294F-4919-BB8E-5CA7A973C029",
            "versionEndIncluding": "5.6.17",
            "versionStartIncluding": "5.6.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35D34345-0AD1-499C-9A74-982B2D3F305A"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.0:update_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DF3F07E-6F4E-4B97-B313-7DA3E8A88451"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.0:update_2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C98B0EA-7A52-4BDF-90C2-38797FC2B75A"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FECF06B5-3915-48F0-A140-41C7A27EE99D"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.1:update_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBD8B161-0A07-492F-89E4-7A0BD02F6464"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.1:update_2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3E8E0E1-FF63-425D-8C22-86B16CFB7B1A"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCD65CE9-432D-43E5-B2BC-C3FCEBAA6F70"
          },
          {
            "criteria": "cpe:2.3:a:vmware:vcenter_server_appliance:5.5:update_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB2E2AAD-E221-4227-A41B-DC01BFDFCD6C"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79A602C5-61FE-47BA-9786-F045B6C6DBA8"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:opensuse_project:suse_linux_enterprise_desktop:11.0:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99258893-3460-4476-9D7B-87A105929E4E"
          },
          {
            "criteria": "cpe:2.3:o:opensuse_project:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B38803C-0B52-485E-8F5E-4BEFA606E21E"
          },
          {
            "criteria": "cpe:2.3:o:opensuse_project:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*",
            "vulnerable": true,
            "matchCriteriaId": "462A90ED-B4E1-42E5-ABEF-68E3972526DF"
          },
          {
            "criteria": "cpe:2.3:o:opensuse_project:suse_linux_enterprise_software_development_kit:11.0:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26627EDD-A852-400E-8524-E42B0177D3DC"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31B5BEDD-9736-44DF-8702-D822F4010159",
            "versionEndExcluding": "5.5.38",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF28BC03-4A7D-42F2-B8DD-D9797D117781",
            "versionEndExcluding": "10.0.12",
            "versionStartIncluding": "10.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3ED68ADD-BBDA-4485-BC76-58F011D72311"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2DF4815-B8CB-4AD3-B91D-2E09A8E318E9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:-:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E534C201-BCC5-473C-AAA7-AAB97CEB5437"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:vmware:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2470C6E8-2024-4CF5-9982-CFF50E88EAE9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15FC9014-BD85-4382-9D04-C0703E901D7A"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F7F8866-DEAD-44D1-AB10-21EE611AA026"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1831D45A-EE6E-4220-8F8C-248B69520948"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9DFA18B6-2642-470A-A350-68947529EE5D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
