CVSS: 6.2EPSS: 0%CPEs: 9EXPL: 0CVE-2014-6551 – mysql: unspecified vulnerability related to CLIENT:MYSQLADMIN (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-6551
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows local users to affect confidentiality via vectors related to CLIENT:MYSQLADMIN. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.38 y anteriores y 5.6.19 y anteriores permite a usuarios locales afectar a la confidencialidad a través de vectores relacionados con CLIENT:MYSQLADMIN. Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues.... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2014-4287 – mysql: unspecified vulnerability related to SERVER:CHARACTER SETS (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-4287
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:CHARACTER SETS. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.38 y anteriores y 4.6.19 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores relacionados con SERVER:CHARACTER SETS. Multiple security issues were discovered in MySQL and this update includes a new upstream MyS... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 9.8EPSS: 0%CPEs: 9EXPL: 0CVE-2014-6469 – mysql: unspecified vulnerability related to SERVER:OPTIMIZER (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-6469
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.39 y versiones anteriores y 5.6.20 y versiones anteriores permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores relacionados con SERVER:OPTIMIZER. Multiple security issues were discovered in MySQL and this update includes a new upst... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 5.9EPSS: 1%CPEs: 10EXPL: 0CVE-2014-6494 – Slackware Security Advisory - mariadb Updates
https://notcve.org/view.php?id=CVE-2014-6494
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6496. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.39 y anteriores, y 5.6.20 y anteriores, permite a atacantes remotos afectar a la disponibilidad a través de vectores relacionados con CLIENT:SSL:yaSSL, una diferente vulnerabilidad a CVE-2014-6496. Multiple security issues were... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698 •
CVSS: 7.4EPSS: 1%CPEs: 10EXPL: 0CVE-2014-6496 – Slackware Security Advisory - mariadb Updates
https://notcve.org/view.php?id=CVE-2014-6496
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6494. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.39 y anteriores y 5.6.20 y anteriores, permite a atacantes remotos afectar la disponibilidad a través de vectores relacionados con CLIENT:SSL:yaSSL, una vulnerabilidad diferente a CVE-2014-6494. Multiple security issues were di... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698 •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2014-6484 – mysql: unspecified vulnerability related to SERVER:DML (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-6484
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:DML. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.38 y anteriores, y 5.6.19 y anteriores , permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores relacionados con SERVER:DML. Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 9.8EPSS: 0%CPEs: 9EXPL: 0CVE-2014-6530 – mysql: unspecified vulnerability related to CLIENT:MYSQLDUMP (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-6530
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to CLIENT:MYSQLDUMP. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.38 y anteriores, y 5.6.19 y anteriores, permite a usuarios remotos autenticados afectar a la confidencialidad, la integridad, y la disponibilidad a través de vectores relacionados con CLIENT:MYSQLDUMP. Multiple security issues were... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2014-6505 – mysql: unspecified vulnerability related to SERVER:MEMORY STORAGE ENGINE (CPU October 2014)
https://notcve.org/view.php?id=CVE-2014-6505
15 Oct 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to SERVER:MEMORY STORAGE ENGINE. Vulnerabilidad sin especificar en Oracle MySQL Server 5.5.38 y anteriores, y 5.6.19 y anteriores, permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores relacionados con SERVER:MEMORY STORAGE ENGINE. Multiple security issues were discovered in MySQL and this update includes a ... • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html •
CVSS: 10.0EPSS: 90%CPEs: 345EXPL: 23CVE-2014-7169 – GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-7169
25 Sep 2014 — GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a ... • https://packetstorm.news/files/id/128650 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-228: Improper Handling of Syntactically Invalid Structure •
CVSS: 10.0EPSS: 97%CPEs: 345EXPL: 134CVE-2014-6271 – GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-6271
24 Sep 2014 — GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka "ShellShock." N... • https://packetstorm.news/files/id/181111 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') CWE-94: Improper Control of Generation of Code ('Code Injection') •