CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 0CVE-2014-2419 – mysql: unspecified DoS related to Partition (CPU April 2014)
https://notcve.org/view.php?id=CVE-2014-2419
16 Apr 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.35 y anteriores y 5.6.15 y anteriores, permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con la partición. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and... • http://rhn.redhat.com/errata/RHSA-2014-0522.html •
CVSS: 9.8EPSS: 0%CPEs: 23EXPL: 0CVE-2014-2436 – mysql: unspecified vulnerability related to RBR (CPU April 2014)
https://notcve.org/view.php?id=CVE-2014-2436
16 Apr 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.36 y anteriores y 5.6.16 y anteriores, permite a usuarios remotos autenticados afectar a confidencialidad, integridad y disponibilidad a través de vectores relacionados con RBR. Unspecified vulnerability in the MySQL Server component in Oracle My... • http://rhn.redhat.com/errata/RHSA-2014-0522.html •
CVSS: 9.8EPSS: 1%CPEs: 23EXPL: 0CVE-2014-2431 – mysql: unspecified DoS related to Options (CPU April 2014)
https://notcve.org/view.php?id=CVE-2014-2431
16 Apr 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect availability via unknown vectors related to Options. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.36 y anteriores y 5.6.16 y anteriores, permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con las opciones. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and ... • http://rhn.redhat.com/errata/RHSA-2014-0522.html •
CVSS: 9.8EPSS: 0%CPEs: 21EXPL: 0CVE-2014-2438 – mysql: unspecified DoS related to Replication (CPU April 2014)
https://notcve.org/view.php?id=CVE-2014-2438
16 Apr 2014 — Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.35 y anteriores y 5.6.15 y anteriores, permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con Replication. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier an... • http://rhn.redhat.com/errata/RHSA-2014-0522.html •
CVSS: 9.8EPSS: 3%CPEs: 22EXPL: 0CVE-2014-0384 – mysql: unspecified DoS related to XML (CPU April 2014)
https://notcve.org/view.php?id=CVE-2014-0384
15 Apr 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to XML. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL 5.5.35 y anteriores y 5.6.15 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores relacionados con XML. Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.35 and ... • http://rhn.redhat.com/errata/RHSA-2014-0522.html •
CVSS: 7.5EPSS: 32%CPEs: 8EXPL: 0CVE-2010-5298 – openssl: freelist misuse causing a possible use-after-free
https://notcve.org/view.php?id=CVE-2010-5298
14 Apr 2014 — Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, when SSL_MODE_RELEASE_BUFFERS is enabled, allows remote attackers to inject data across sessions or cause a denial of service (use-after-free and parsing error) via an SSL connection in a multithreaded environment. Condición de carrera en la función ssl3_read_bytes en s3_pkt.c en OpenSSL hasta 1.0.1g, cuando SSL_MODE_RELEASE_BUFFERS está habilitado, permite a atacantes remotos inyectar datos a través de sesiones o causar u... • http://advisories.mageia.org/MGASA-2014-0187.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 9.8EPSS: 82%CPEs: 63EXPL: 0CVE-2014-0001 – mysql: command-line tool buffer overflow via long server version string
https://notcve.org/view.php?id=CVE-2014-0001
31 Jan 2014 — Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string. Desbordamiento de buffer en client/mysql.cc en Oracle MySQL y MariaDB anterior a 5.5.35 permite a servidores de bases de datos remotos causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario a través de una cadena de versión del servidor larga. Buffer overflow in clien... • http://bazaar.launchpad.net/~maria-captains/maria/5.5/revision/2502.565.64 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0401 – mysql: unspecified DoS vulnerability (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0401
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL 5.1.72 y anteriores, 5.5.34 y anteriores, y 5.6.14 y anteriores que permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos. Buffer overflow in client/mysql.cc in Oracle MySQL ... • http://osvdb.org/102071 •
CVSS: 9.1EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0402 – mysql: unspecified vulnerability related to Locking DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0402
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Locking. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.1.71 y anteriores, 5.5.33 y anteriores, y 5.6.13 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con Locking. Buffer overfl... • http://osvdb.org/102068 •
CVSS: 6.8EPSS: 0%CPEs: 20EXPL: 0CVE-2014-0412 – mysql: unspecified vulnerability related to InnoDB DoS (CPU Jan 2014)
https://notcve.org/view.php?id=CVE-2014-0412
15 Jan 2014 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.1.72 y anteriores, 5.5.34 y anteriores y 5.6.14 y anteriores permite a atacantes remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con InnoDB. Buffer overflow... • http://osvdb.org/102067 •