CVE-2014-6496

Published Oct 15, 2014

Last updated 2 years ago

Overview

Description: Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6494.
Source: secalert_us@oracle.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6133CA80-A291-487F-AE06-85D4AA154727",
            "versionEndIncluding": "15.1"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79A602C5-61FE-47BA-9786-F045B6C6DBA8"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF35B328-2B85-4093-9288-2EF6043AA8DF",
            "versionEndExcluding": "5.5.40",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C55CD8E-8ADC-470C-9042-5C63221A2F09",
            "versionEndExcluding": "10.0.15",
            "versionStartIncluding": "10.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAA995C3-9B96-4B6F-A3E9-587F8468F551",
            "versionEndIncluding": "5.5.39",
            "versionStartIncluding": "5.5.0"
          },
          {
            "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3E71621-9463-4E83-A99C-1D51E6352770",
            "versionEndIncluding": "5.6.20",
            "versionStartIncluding": "5.6.0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2DF4815-B8CB-4AD3-B91D-2E09A8E318E9"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15FC9014-BD85-4382-9D04-C0703E901D7A"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1831D45A-EE6E-4220-8F8C-248B69520948"
          },
          {
            "criteria": "cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "028ABA8F-4E7B-4CD0-B6FC-3A0941E254BA"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References