CVE-2014-6478

Published Oct 15, 2014

Last updated 2 years ago

Overview

Description: Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.
Source: secalert_us@oracle.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6133CA80-A291-487F-AE06-85D4AA154727",
            "versionEndIncluding": "15.1"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7281DD98-87B1-4185-A218-DE80B0061E21",
            "versionEndIncluding": "5.5.38",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1A7C5B0-7426-48BB-B5BD-F423663A0786",
            "versionEndIncluding": "5.6.19",
            "versionStartIncluding": "5.6.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79A602C5-61FE-47BA-9786-F045B6C6DBA8"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F0436B2-B3C8-4236-B674-E3434B9B45D2",
            "versionEndExcluding": "5.5.39",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "504AA794-4421-422D-A1C7-BB5AE334FD55",
            "versionEndExcluding": "10.0.13",
            "versionStartIncluding": "10.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2DF4815-B8CB-4AD3-B91D-2E09A8E318E9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15FC9014-BD85-4382-9D04-C0703E901D7A"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1831D45A-EE6E-4220-8F8C-248B69520948"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "028ABA8F-4E7B-4CD0-B6FC-3A0941E254BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References