CVSS: 7.5EPSS: 0%CPEs: 14EXPL: 0CVE-2012-3160 – mysql: unspecified vulnerability in Server Installation leading to information disclosure (CPU Oct 2012)
https://notcve.org/view.php?id=CVE-2012-3160
16 Oct 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows local users to affect confidentiality via unknown vectors related to Server Installation. Vulnerabilidad no especificada en el componente MySQL Server en Oracle MySQL v5.1.65 y anteriores, y v5.5.27 y anteriores, permite a usuarios locales a afectar la confidencialidad a través de vectores desconocidos relacionados con Server Installation. Multiple vulnerabilities have been found in MyS... • http://rhn.redhat.com/errata/RHSA-2012-1462.html •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2012-2750 – Mandriva Linux Security Advisory 2013-250
https://notcve.org/view.php?id=CVE-2012-2750
17 Aug 2012 — Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility. Una vulnerabilidad no especificada en MySQL v5.5.x antes de v5.5.23 tiene un impacto y vectores de ataque desconocidos relacionados con una "revisión de seguridad". Se trata de un problema también conocido como Bug #59533. NOTA: este podría ser un duplicado ... • http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.html •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1757
https://notcve.org/view.php?id=CVE-2012-1757
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB. Vulnerabilidad no especificada en Oracle MySQL Server v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con InnoDB. • http://osvdb.org/83977 •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2012-0540 – mysql: unspecified vulnerability related to GIS extension DoS (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-0540
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier and 5.5.23 and earlier allows remote authenticated users to affect availability, related to GIS Extension. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y anteriores y v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad, en relación a la extensión SIG. Multiple vulnerabilities have been found in MySQL, allowing attackers to execute arbitrary code or cause Denial of Service. Versions less ... • http://osvdb.org/83976 •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1689 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-1689
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.22 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y anteriores, y v5.5.22 y anteriores, permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. Multiple vulnerabilities have been found in MySQL, allowing attack... • http://osvdb.org/83980 •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2012-1734 – mysql: unspecified DoS vulnerability related to Server Optimizer (CPU Jul 2012)
https://notcve.org/view.php?id=CVE-2012-1734
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.1.62 and earlier, and 5.5.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.1.62 y v5.5.23 y anteriores, permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. Multiple vulnerabilities have been found in MySQL, allowing attackers to execute... • http://osvdb.org/83979 •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1735
https://notcve.org/view.php?id=CVE-2012-1735
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer. Vulnerabilidad no especificada en Oracle MySQL Server v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con el Optimizador de servidor. • http://osvdb.org/83975 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1756
https://notcve.org/view.php?id=CVE-2012-1756
17 Jul 2012 — Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier allows remote authenticated users to affect availability via unknown vectors. Vulnerabilidad no especificada en Oracle MySQL Server v5.5.23 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos. • http://osvdb.org/83978 •
CVSS: 8.1EPSS: 95%CPEs: 61EXPL: 9CVE-2012-2122 – MySQL - Authentication Bypass
https://notcve.org/view.php?id=CVE-2012-2122
26 Jun 2012 — sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, when running in certain environments with certain implementations of the memcmp function, allows remote attackers to bypass authentication by repeatedly authenticating with the same incorrect password, which eventually causes a token comparison to succeed due to an improperly-checked return value. sql/password.c en... • https://packetstorm.news/files/id/181221 • CWE-287: Improper Authentication CWE-305: Authentication Bypass by Primary Weakness •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2012-1697 – Gentoo Linux Security Advisory 201308-06
https://notcve.org/view.php?id=CVE-2012-1697
03 May 2012 — Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition. Vulnerabilidad no especificada en el componente de servidor MySQL en Oracle MySQL v5.5.21 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con la partición. Multiple vulnerabilities have been found in MySQL, allowing attackers to execute arbit... • http://secunia.com/advisories/48890 •