CVSS: 7.2EPSS: 96%CPEs: 3EXPL: 6CVE-2012-5613 – MySQL (Linux) - Database Privilege Escalation
https://notcve.org/view.php?id=CVE-2012-5613
03 Dec 2012 — MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and possibly other versions, when configured to assign the FILE privilege to users who should not have administrative privileges, allows remote authenticated users to gain privileges by leveraging the FILE privilege to create files as the MySQL administrator. NOTE: the vendor disputes this issue, stating that this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation. NOTE: it c... • https://www.exploit-db.com/exploits/23077 • CWE-16: Configuration •
CVSS: 9.8EPSS: 0%CPEs: 37EXPL: 0CVE-2012-3163 – mysql: unspecified vulnerability related to Information Schema (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3163
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Information Schema. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.64 y anteriores, y v5.5.26 y anteriores, permite a usuarios remotos autenticados a afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos ... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3167 – mysql: unspecified DoS vulnerability related to Server Full Text Search (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3167
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Full Text Search. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.63 y anteriores, y v5.5.25 y anteriores, permite a usuarios remotos autenticados a afectar la disponibilidad a través de vectores desconocidos relacionados con Server Full Text Search. Multiple vulnera... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3173 – mysql: unspecified DoS vulnerability related to InnoDB Plugin (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3173
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors related to InnoDB Plugin. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.63 y anteriores, y v5.5.25 y anteriores, permite a usuarios remotos autenticados a afectar la disponibilidad a través de vectores desconocidos relacionados con InnoDB Plugin. Multiple vulnerabilities have been f... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3177 – mysql: unspecified Server DoS vulnerability (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3177
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.65 y anteriores, y v5.5.27 y anteriores, permite a usuarios remotos autenticados a afectar la disponibilidad a través de vectores desconocidos relacionados con Server. Multiple vulnerabilities have been found in MySQL,... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3180 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3180
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.65 y anteriores, y v5.5.27 y anteriores, permite a usuarios remotos autenticados a afectar la disponibilidad a través de vectores desconocidos relacionados con Server Optimizer. Multiple vulnerabilities have ... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3197 – mysql: unspecified DoS vulnerability related to Server Replication (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3197
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Replication. Vulnerabilidad no especificada en el componente de MySQL Server en Oracle MySQL v5.1.64 y anteriores, y v5.5.26 y anteriores, permite a usuarios autenticados remotamente afectar a la disponibilidad a través de vectores desconocidos relacionados con Server Replication. Multiple vulnerabil... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.1EPSS: 0%CPEs: 15EXPL: 0CVE-2012-3166 – mysql: unspecified DoS vulnerability related to InnoDB (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3166
17 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors related to InnoDB. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.63 y anteriores, y v5.5.25 y anteriores, permite a usuarios remotos autenticados a afectar la disponibilidad a través de vectores desconocidos relacionados con InnoDB. Multiple vulnerabilities have been found in MySQL,... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3150 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3150
16 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en el componente de MySQL Server de Oracle MySQL v5.1.64 y anteriores y 5.5.26 y anteriores, permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Server Optimizer. Multiple vulnerabilities h... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 9.8EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3158 – mysql: unspecified vulnerability related to the MySQL Protocol (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3158
16 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Protocol. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.64 y anteriores, y v5.5.26 y anteriores, permite a usuarios remotos autenticados a afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos relacionados con Pro... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •