This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:oracle:mysql:3.23.7 |
| Detail | |||
|---|---|---|---|
| Vendor | Oracle | First view | 2001-01-19 |
| Product | Mysql | Last view | 2019-07-23 |
| Version | 3.23.7 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:oracle:mysql | ||
Activity : Overall
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4 | 2019-07-23 | CVE-2019-2879 | Network | Low | Requires ... | |
| 6.8 | 2019-07-23 | CVE-2019-2834 | Network | Low | Requires ... | |
| 6.8 | 2019-07-23 | CVE-2019-2830 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2826 | Network | Low | Requires ... | |
| 5.1 | 2019-07-23 | CVE-2019-2822 | Network | High | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 4 | 2019-07-23 | CVE-2019-2815 | Network | Low | Requires ... | |
| 3.5 | 2019-07-23 | CVE-2019-2814 | Network | Medium | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2812 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2811 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2810 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2808 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2803 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2802 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2801 | Network | Low | Requires ... | |
| 5.5 | 2019-07-23 | CVE-2019-2800 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2798 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2796 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2795 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2789 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2785 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2784 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2780 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2752 | Network | Low | Requires ... | |
| 4 | 2019-07-23 | CVE-2019-2747 | Network | Low | Requires ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 62% (30) | CWE-284 | Access Control (Authorization) Issues |
| 20% (10) | CWE-20 | Improper Input Validation |
| 4% (2) | CWE-264 | Permissions, Privileges, and Access Controls |
| 4% (2) | CWE-200 | Information Exposure |
| 2% (1) | CWE-320 | Key Management Errors |
| % | id | Name |
|---|---|---|
| 2% (1) | CWE-269 | Improper Privilege Management |
| 2% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 2% (1) | CWE-89 | Improper Sanitization of Special Elements used in an SQL Command ('... |
Oval Markup Language : Definitions
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:21317 | RHSA-2012:0105: mysql security update (Important) |
| oval:org.mitre.oval:def:23683 | ELSA-2012:0105: mysql security update (Important) |
| oval:org.mitre.oval:def:19679 | DSA-2780-1 mysql-5.1 - several |
| oval:org.mitre.oval:def:16267 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se... |
| oval:org.mitre.oval:def:25101 | USN-2291-1 -- mysql-5.5 vulnerabilities |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:26099 | DSA-2985-1 -- mysql-5.5 - security update |
| oval:org.mitre.oval:def:20971 | RHSA-2013:0772: mysql security update (Important) |
| oval:org.mitre.oval:def:18467 | DSA-2667-1 mysql-5.5 - several |
| oval:org.mitre.oval:def:18379 | USN-1807-2 -- mysql-5.5 vulnerabilities |
| oval:org.mitre.oval:def:17129 | USN-1807-1 -- MySQL vulnerabilities |
| oval:org.mitre.oval:def:20470 | RHSA-2013:0121: mysql security and bug fix update (Low) |
| oval:org.mitre.oval:def:23174 | ELSA-2013:0121: mysql security and bug fix update (Low) |
| oval:org.mitre.oval:def:26702 | DEPRECATED: ELSA-2013-0121 -- mysql security and bug fix update (low) |
| oval:org.mitre.oval:def:16451 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: My... |
| oval:org.mitre.oval:def:10468 | MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access a... |
| oval:org.mitre.oval:def:16835 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: St... |
| oval:org.mitre.oval:def:17266 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se... |
| oval:org.mitre.oval:def:16877 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se... |
| oval:org.mitre.oval:def:21643 | RHSA-2012:1462: mysql security update (Important) |
| oval:org.mitre.oval:def:17999 | USN-1621-1 -- mysql-5.1, mysql-5.5, mysql-dfsg-5.1 vulnerabilities |
| oval:org.mitre.oval:def:23931 | ELSA-2012:1462: mysql security update (Important) |
| oval:org.mitre.oval:def:27464 | DEPRECATED: ELSA-2012-1462 -- mysql security update (important) |
| oval:org.mitre.oval:def:17268 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se... |
| oval:org.mitre.oval:def:23852 | ELSA-2013:0772: mysql security update (Important) |
| oval:org.mitre.oval:def:16758 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 60356 | MySql Client Library (libmysqlclient) mysql_real_connect Function Local Overflow |
| 27703 | MySQL MERGE Table Privilege Persistence |
| 23526 | MySQL Query NULL Charcter Logging Bypass |
| 18894 | MySQL drop database Request Remote Overflow |
| 10660 | MySQL ALTER TABLE/RENAME Forces Old Permission Checks |
| id | Description |
|---|---|
| 10659 | MySQL ALTER MERGE Tables to Change the UNION DoS |
| 10658 | MySQL mysql_real_connect() Function Remote Overflow |
| 9907 | MySQL select Command Remote Overflow |
| 8979 | MySQL SHOW GRANTS Encrypted Password Disclosure |
| 520 | MySQL Database Name Traversal Arbitrary File Modification |
OpenVAS Exploits
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2013-09-18 | Name : Debian Security Advisory DSA 2581-1 (mysql-5.1 - several vulnerabilities) File : nvt/deb_2581_1.nasl |
| 2012-11-26 | Name : Oracle MySQL Server Multiple Vulnerabilities-01 Nov12 (Windows) File : nvt/gb_oracle_mysql_multiple_vuln01_nov12_win.nasl |
| 2012-11-26 | Name : Oracle MySQL Server Multiple Vulnerabilities-02 Nov12 (Windows) File : nvt/gb_oracle_mysql_multiple_vuln02_nov12_win.nasl |
| 2012-11-26 | Name : Oracle MySQL Server Multiple Vulnerabilities-03 Nov12 (Windows) File : nvt/gb_oracle_mysql_multiple_vuln03_nov12_win.nasl |
| 2012-11-26 | Name : Oracle MySQL Server Multiple Vulnerabilities-04 Nov12 (Windows) File : nvt/gb_oracle_mysql_multiple_vuln04_nov12_win.nasl |
| id | Description |
|---|---|
| 2012-11-26 | Name : Oracle MySQL Server Multiple Vulnerability-05 Nov12 (Windows) File : nvt/gb_oracle_mysql_multiple_vuln05_nov12_win.nasl |
| 2012-11-15 | Name : RedHat Update for mysql RHSA-2012:1462-01 File : nvt/gb_RHSA-2012_1462-01_mysql.nasl |
| 2012-11-15 | Name : CentOS Update for mysql CESA-2012:1462 centos6 File : nvt/gb_CESA-2012_1462_mysql_centos6.nasl |
| 2012-11-06 | Name : Ubuntu Update for mysql-5.5 USN-1621-1 File : nvt/gb_ubuntu_USN_1621_1.nasl |
| 2012-08-10 | Name : Debian Security Advisory DSA 2496-1 (mysql-5.1) File : nvt/deb_2496_1.nasl |
| 2009-11-17 | Name : Mac OS X Version File : nvt/macosx_version.nasl |
| 2009-10-10 | Name : SLES9: Security update for MySQL File : nvt/sles9p5020865.nasl |
| 2009-10-10 | Name : SLES9: Security update for mysql File : nvt/sles9p5014017.nasl |
| 2009-10-10 | Name : SLES9: Security update for MySQL File : nvt/sles9p5015996.nasl |
| 2009-03-06 | Name : RedHat Update for mysql RHSA-2008:0364-01 File : nvt/gb_RHSA-2008_0364-01_mysql.nasl |
| 2009-03-06 | Name : RedHat Update for mysql RHSA-2008:0768-01 File : nvt/gb_RHSA-2008_0768-01_mysql.nasl |
| 2008-09-24 | Name : Gentoo Security Advisory GLSA 200410-22 (MySQL) File : nvt/glsa_200410_22.nasl |
| 2008-09-04 | Name : FreeBSD Ports: mysql-server File : nvt/freebsd_mysql-server1.nasl |
| 2008-09-04 | Name : FreeBSD Ports: mysql-server File : nvt/freebsd_mysql-server3.nasl |
| 2008-09-04 | Name : FreeBSD Ports: mysql-server File : nvt/freebsd_mysql-server4.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1071-1 (mysql) File : nvt/deb_1071_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1073-1 (mysql-dfsg-4.1) File : nvt/deb_1073_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1079-1 (mysql-dfsg) File : nvt/deb_1079_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 013-1 (mysql) File : nvt/deb_013_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 562-1 (mysql) File : nvt/deb_562_1.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0155 | Multiple Vulnerabilities in Oracle MySQL Product Suite Severity : Category I - VMSKEY : V0061083 |
| 2014-A-0106 | Multiple Vulnerabilities in Oracle MySQL Product Suite Severity : Category I - VMSKEY : V0053189 |
| 2014-A-0057 | Multiple Vulnerabilities in Oracle MySQL Products Severity : Category I - VMSKEY : V0049591 |
| 2014-A-0011 | Multiple Vulnerabilities in Oracle MySQL Products Severity : Category I - VMSKEY : V0043399 |
| 2013-A-0201 | Multiple Vulnerabilities in Oracle MySQL Products Severity : Category I - VMSKEY : V0040782 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2016-03-14 | Hunter exploit kit landing page detected RuleID : 36543 - Type : EXPLOIT-KIT - Revision : 2 |
| 2015-01-06 | Oracle MySQL Server InnoDB Memcached plugin resource exhaustion attempt RuleID : 32651 - Type : SERVER-MYSQL - Revision : 3 |
| 2015-01-06 | Oracle MySQL Server InnoDB Memcached plugin resource exhaustion attempt RuleID : 32650 - Type : SERVER-MYSQL - Revision : 3 |
| 2015-01-06 | Oracle MySQL Server InnoDB Memcached plugin resource exhaustion attempt RuleID : 32649 - Type : SERVER-MYSQL - Revision : 3 |
| 2015-01-06 | Oracle MySQL Server InnoDB Memcached plugin resource exhaustion attempt RuleID : 32648 - Type : SERVER-MYSQL - Revision : 3 |
| Date | Description |
|---|---|
| 2015-01-06 | Oracle MySQL Server InnoDB Memcached plugin resource exhaustion attempt RuleID : 32647 - Type : SERVER-MYSQL - Revision : 3 |
| 2014-12-16 | Oracle MySQL Server XPath memory Corruption attempt RuleID : 32533 - Type : SERVER-MYSQL - Revision : 2 |
Nessus® Vulnerability Scanner
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-18 | Name : The remote Fedora host is missing a security update. File : fedora_2019-a8ffcff7ee.nasl - Type : ACT_GATHER_INFO |
| 2019-01-17 | Name : The remote database server is affected by multiple vulnerabilities. File : mysql_8_0_14.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-f67fda3db6.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-c82fc3e109.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-77e610115a.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2018-12-28 | Name : Node.js - JavaScript run-time environment is affected by multiple vulnerabili... File : nodejs_2018_nov.nasl - Type : ACT_GATHER_INFO |
| 2018-12-10 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_2a86f45afc3c11e8a41400155d006b02.nasl - Type : ACT_GATHER_INFO |
| 2018-12-01 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4348.nasl - Type : ACT_GATHER_INFO |
| 2018-11-23 | Name : The remote Debian host is missing a security update. File : debian_DLA-1586.nasl - Type : ACT_GATHER_INFO |
| 2018-11-20 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4341.nasl - Type : ACT_GATHER_INFO |
| 2018-11-06 | Name : The remote Debian host is missing a security update. File : debian_DLA-1566.nasl - Type : ACT_GATHER_INFO |
| 2018-10-30 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_238ae7dedba211e8b713b499baebfeaf.nasl - Type : ACT_GATHER_INFO |
| 2018-10-26 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1337.nasl - Type : ACT_GATHER_INFO |
| 2018-10-26 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1346.nasl - Type : ACT_GATHER_INFO |
| 2018-10-22 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ec5072b0d43a11e8a6d2b499baebfeaf.nasl - Type : ACT_GATHER_INFO |
| 2018-10-19 | Name : The remote database server is affected by multiple vulnerabilities. File : mysql_8_0_13.nasl - Type : ACT_GATHER_INFO |
| 2018-09-27 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1302.nasl - Type : ACT_GATHER_INFO |
| 2018-09-27 | Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1303.nasl - Type : ACT_GATHER_INFO |
| 2018-09-19 | Name : The remote Amazon Linux 2 host is missing a security update. File : al2_ALAS-2018-1078.nasl - Type : ACT_GATHER_INFO |
| 2018-09-12 | Name : The remote Fedora host is missing a security update. File : fedora_2018-3a3c660bfa.nasl - Type : ACT_GATHER_INFO |
| 2018-09-04 | Name : The remote Debian host is missing a security update. File : debian_DLA-1488.nasl - Type : ACT_GATHER_INFO |
| 2018-09-04 | Name : The remote Fedora host is missing a security update. File : fedora_2018-d1c4a4ca50.nasl - Type : ACT_GATHER_INFO |
| 2018-08-24 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1068.nasl - Type : ACT_GATHER_INFO |
| 2018-08-24 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1069.nasl - Type : ACT_GATHER_INFO |
| 2018-08-24 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1070.nasl - Type : ACT_GATHER_INFO |
