CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-0667 – Ubuntu Security Notice USN-2954-1
https://notcve.org/view.php?id=CVE-2016-0667
21 Apr 2016 — Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Locking. Vulnerabilidad no especificada en Oracle MySQL 5.7.11 y versiones anteriores permite a usuarios locales afectar a la disponibilidad a través de vectores relacionados con Locking. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. • http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html •
CVSS: 5.9EPSS: 1%CPEs: 16EXPL: 0CVE-2016-2047 – mysql: ssl-validate-cert incorrect hostname check
https://notcve.org/view.php?id=CVE-2016-2047
26 Jan 2016 — The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated ... • http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00035.html • CWE-254: 7PK - Security Features CWE-295: Improper Certificate Validation •
CVSS: 9.8EPSS: 0%CPEs: 24EXPL: 0CVE-2016-0609 – mysql: unspecified vulnerability in subcomponent: Server: Security: Privileges (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0609
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to privileges. Vulnerabilidad no especificada en Oracle MySQL 5.5.46 y versiones anteriores, 5.6.27 y versiones anteriores y 5.7.9 y MariaDB en versiones anteriores a 5.5.47, 10.0.x en versiones anteriores a 10.0.23 y 10.1.x en versiones anteriores a 10.1.10 ... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •
CVSS: 9.8EPSS: 0%CPEs: 42EXPL: 0CVE-2016-0610 – mysql: unspecified vulnerability in subcomponent: Server: InnoDB (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0610
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB. Vulnerabilidad no especificada en Oracle MySQL 5.6.27 y versiones anteriores y MariaDB en versiones anteriores a 10.0.22 y 10.1.x en versiones anteriores a 10.1.9 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores no conocidos relacionados con InnoDB. MariaDB is a ... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •
CVSS: 9.8EPSS: 0%CPEs: 11EXPL: 0CVE-2016-0611 – mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0611
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. Vulnerabilidad no especificada en Oracle MySQL 5.6.27 y versiones anteriores y 5.7.9 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Optimizer. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MyS... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html • CWE-284: Improper Access Control •
CVSS: 8.1EPSS: 0%CPEs: 50EXPL: 0CVE-2016-0616 – mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0616
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer. Vulnerabilidad no especificada en Oracle MySQL 5.5.46 y versiones anteriores y MariaDB en versiones anteriores a 5.5.47, 10.0.x en versiones anteriores a 10.0.23 y 10.1.x en versiones anteriores a 10.1.10 permite a usuarios remotos autenticados afectar a la disponibilidad a t... • http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00033.html •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2016-0502
https://notcve.org/view.php?id=CVE-2016-0502
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer. Vulnerabilidad no especificada en Oracle MySQL 5.5.31 y versiones anteriores y 5.6.11 y versiones anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Optimizer. • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2016-0503 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0503
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0504. Vulnerabilidad no especificada en Oracle MySQL 5.6.27 y versiones anteriores y 5.7.9 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores relacionados con DML, una vulnerabilidad diferente a CVE-2016-0504. Multiple security issues were discovered in MySQL and this update in... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •
CVSS: 6.8EPSS: 1%CPEs: 10EXPL: 0CVE-2016-0504 – mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0504
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0503. Vulnerabilidad no especificada en Oracle MySQL 5.6.27 y versiones anteriores y 5.7.9 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores relacionados con DML, una vulnerabilidad diferente a CVE-2016-0503. Multiple security issues were discovered in MySQL and this update in... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •
CVSS: 9.8EPSS: 0%CPEs: 24EXPL: 0CVE-2016-0505 – mysql: unspecified vulnerability in subcomponent: Server: Options (CPU January 2016)
https://notcve.org/view.php?id=CVE-2016-0505
21 Jan 2016 — Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Options. Vulnerabilidad no especificada en Oracle MySQL 5.5.46 y versiones anteriores, 5.6.27 y versiones anteriores y 5.7.9 y MariaDB en versiones anteriores a 5.5.47, 10.0.x en versiones anteriores a 10.0.23 y 10.1.x en versiones anteriores a 10.1.10 per... • http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00015.html •