This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mysql:mysql:5.5.4
Detail
VendorMysqlFirst view 2011-01-11
ProductMysqlLast view2014-10-15
Version5.5.4TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:mysql:mysql

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
42014-10-15CVE-2014-6520NetworkLowRequires ...
5.52014-07-17CVE-2014-4260NetworkLowRequires ...
6.52014-07-17CVE-2014-4258NetworkLowRequires ...
2.82014-07-17CVE-2014-4243NetworkMediumRequires ...
5.12014-04-15CVE-2014-2440NetworkHighNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.52014-04-15CVE-2014-2438NetworkMediumRequires ...
62014-04-15CVE-2014-2436NetworkMediumRequires ...
2.82014-04-15CVE-2014-2432NetworkMediumRequires ...
2.62014-04-15CVE-2014-2431NetworkHighNone Requ...
3.52014-04-15CVE-2014-2430NetworkMediumRequires ...
42014-04-15CVE-2014-2419NetworkLowRequires ...
42014-04-15CVE-2014-0384NetworkLowRequires ...
7.52014-01-31CVE-2014-0001NetworkLowNone Requ...
3.52014-01-15CVE-2014-0437NetworkMediumRequires ...
2.82014-01-15CVE-2014-0420NetworkMediumRequires ...
42014-01-15CVE-2014-0412NetworkLowRequires ...
42014-01-15CVE-2014-0402NetworkLowRequires ...
42014-01-15CVE-2014-0401NetworkLowRequires ...
3.32014-01-15CVE-2014-0393NetworkLowRequires ...
42014-01-15CVE-2014-0386NetworkLowRequires ...
2.62014-01-15CVE-2013-5908NetworkHighNone Requ...
42014-01-15CVE-2013-5891NetworkLowRequires ...
3.52013-07-17CVE-2013-3812NetworkMediumRequires ...
42013-07-17CVE-2013-3809NetworkLowRequires ...

CWE : Common Weakness Enumeration

%idName
50% (5)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
40% (4)CWE-399Resource Management Errors
10% (1)CWE-189Numeric Errors

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:21317RHSA-2012:0105: mysql security update (Important)
oval:org.mitre.oval:def:23683ELSA-2012:0105: mysql security update (Important)
oval:org.mitre.oval:def:16267Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:24552USN-2170-1 -- mysql-5.5 vulnerabilities
oval:org.mitre.oval:def:24433RHSA-2014:0536: mysql55-mysql security update (Moderate)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:24731ELSA-2014:0536: mysql55-mysql security update (Moderate)
oval:org.mitre.oval:def:25089RHSA-2014:0702: mariadb security update (Moderate)
oval:org.mitre.oval:def:27344DEPRECATED: ELSA-2014-0536 -- mysql55-mysql security update (moderate)
oval:org.mitre.oval:def:27337ELSA-2014-0702 -- mariadb security update (moderate)
oval:org.mitre.oval:def:25101USN-2291-1 -- mysql-5.5 vulnerabilities
oval:org.mitre.oval:def:26099DSA-2985-1 -- mysql-5.5 - security update
oval:org.mitre.oval:def:20971RHSA-2013:0772: mysql security update (Important)
oval:org.mitre.oval:def:18467DSA-2667-1 mysql-5.5 - several
oval:org.mitre.oval:def:18379USN-1807-2 -- mysql-5.5 vulnerabilities
oval:org.mitre.oval:def:17129USN-1807-1 -- MySQL vulnerabilities
oval:org.mitre.oval:def:16451Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: My...
oval:org.mitre.oval:def:16835Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: St...
oval:org.mitre.oval:def:17266Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:16877Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:21643RHSA-2012:1462: mysql security update (Important)
oval:org.mitre.oval:def:17999USN-1621-1 -- mysql-5.1, mysql-5.5, mysql-dfsg-5.1 vulnerabilities
oval:org.mitre.oval:def:23931ELSA-2012:1462: mysql security update (Important)
oval:org.mitre.oval:def:27464DEPRECATED: ELSA-2012-1462 -- mysql security update (important)
oval:org.mitre.oval:def:17268Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Se...
oval:org.mitre.oval:def:23852ELSA-2013:0772: mysql security update (Important)

Open Source Vulnerability Database (OSVDB)

idDescription
78376Oracle MySQL Server Unspecified Remote DoS (2011-2262)
69395MySQL Derived Table Grouping DoS
69394MySQL Temporary Table Expression Re-Evaluation DoS
69393MySQL GROUP_CONCAT() WITH ROLLUP Modifier DoS
69392MySQL Extreme-Value Functions Mixed Arguments DoS
Hide | Show 5 More...
idDescription
69391MySQL Stored Procedures / Prepared Statements Nested Joins DoS
69390MySQL Extreme-Value Functions Argument Parsing Type Error DoS
69387MySQL LIKE Predicates Pre-Evaluation DoS
69000MySQL HANDLER Interface Unspecified READ Request DoS
67384MySQL LOAD DATA INFILE Statement Incorrect OK Packet DoS

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-09-18Name : Debian Security Advisory DSA 2581-1 (mysql-5.1 - several vulnerabilities)
File : nvt/deb_2581_1.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-01 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln01_nov12_win.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-02 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln02_nov12_win.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-03 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln03_nov12_win.nasl
2012-11-26Name : Oracle MySQL Server Multiple Vulnerabilities-04 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln04_nov12_win.nasl
Hide | Show 20 More...
idDescription
2012-11-26Name : Oracle MySQL Server Multiple Vulnerability-05 Nov12 (Windows)
File : nvt/gb_oracle_mysql_multiple_vuln05_nov12_win.nasl
2012-11-15Name : RedHat Update for mysql RHSA-2012:1462-01
File : nvt/gb_RHSA-2012_1462-01_mysql.nasl
2012-11-15Name : CentOS Update for mysql CESA-2012:1462 centos6
File : nvt/gb_CESA-2012_1462_mysql_centos6.nasl
2012-11-06Name : Ubuntu Update for mysql-5.5 USN-1621-1
File : nvt/gb_ubuntu_USN_1621_1.nasl
2012-08-10Name : Debian Security Advisory DSA 2496-1 (mysql-5.1)
File : nvt/deb_2496_1.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0874 centos6
File : nvt/gb_CESA-2012_0874_mysql_centos6.nasl
2012-07-30Name : CentOS Update for mysql CESA-2012:0105 centos6
File : nvt/gb_CESA-2012_0105_mysql_centos6.nasl
2012-07-09Name : RedHat Update for mysql RHSA-2012:0105-01
File : nvt/gb_RHSA-2012_0105-01_mysql.nasl
2012-06-22Name : RedHat Update for mysql RHSA-2012:0874-04
File : nvt/gb_RHSA-2012_0874-04_mysql.nasl
2012-06-05Name : RedHat Update for mysql RHSA-2011:0164-01
File : nvt/gb_RHSA-2011_0164-01_mysql.nasl
2012-04-30Name : Debian Security Advisory DSA 2429-1 (mysql-5.1)
File : nvt/deb_2429_1.nasl
2012-04-02Name : Fedora Update for mysql FEDORA-2012-0972
File : nvt/gb_fedora_2012_0972_mysql_fc16.nasl
2012-03-16Name : Ubuntu Update for mysql-5.1 USN-1397-1
File : nvt/gb_ubuntu_USN_1397_1.nasl
2012-02-13Name : Fedora Update for mysql FEDORA-2012-0987
File : nvt/gb_fedora_2012_0987_mysql_fc15.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201201-02 (MySQL)
File : nvt/glsa_201201_02.nasl
2011-08-19Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-004)
File : nvt/secpod_macosx_su11-004.nasl
2011-01-21Name : MySQL Denial of Service (infinite loop) Vulnerabilities
File : nvt/gb_mysql_infinite_loop_dos_vuln.nasl
2011-01-21Name : MySQL Multiple Denial of Service Vulnerabilities
File : nvt/gb_mysql_mult_dos_vuln_jan11.nasl
2011-01-21Name : Mandriva Update for mysql MDVSA-2011:012 (mysql)
File : nvt/gb_mandriva_MDVSA_2011_012.nasl
2011-01-18Name : MySQL Handler Multiple Denial Of Service Vulnerabilities
File : nvt/gb_mysql_handler_mult_dos_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-A-0106Multiple Vulnerabilities in Oracle MySQL Product Suite
Severity : Category I - VMSKEY : V0053189
2014-A-0057Multiple Vulnerabilities in Oracle MySQL Products
Severity : Category I - VMSKEY : V0049591
2014-A-0011Multiple Vulnerabilities in Oracle MySQL Products
Severity : Category I - VMSKEY : V0043399
2013-A-0201Multiple Vulnerabilities in Oracle MySQL Products
Severity : Category I - VMSKEY : V0040782

Snort® IPS/IDS

DateDescription
2016-03-14Hunter exploit kit landing page detected
RuleID : 36543 - Type : EXPLOIT-KIT - Revision : 2
2014-12-16Oracle MySQL Server XPath memory Corruption attempt
RuleID : 32533 - Type : SERVER-MYSQL - Revision : 2
2014-11-16MySQL/MariaDB mysql.cc buffer overflow attempt
RuleID : 31570 - Type : SERVER-MYSQL - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2017-01-26Name : The remote OracleVM host is missing a security update.
File : oraclevm_OVMSA-2017-0035.nasl - Type : ACT_GATHER_INFO
2016-06-23Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10698.nasl - Type : ACT_GATHER_INFO
2015-05-20Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-0743-1.nasl - Type : ACT_GATHER_INFO
2015-04-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL16389.nasl - Type : ACT_GATHER_INFO
2015-03-30Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2015-091.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2015-03-30Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_libmysql55client18-150302.nasl - Type : ACT_GATHER_INFO
2015-03-26Name : The remote Debian host is missing a security update.
File : debian_DLA-75.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10601.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10627.nasl - Type : ACT_GATHER_INFO
2014-12-22Name : The remote device is affected by multiple vulnerabilities.
File : juniper_space_jsa10659.nasl - Type : ACT_GATHER_INFO
2014-12-15Name : The remote Fedora host is missing a security update.
File : fedora_2014-16003.nasl - Type : ACT_GATHER_INFO
2014-12-09Name : The remote database server is affected by multiple vulnerabilities.
File : mariadb_5_5_37.nasl - Type : ACT_GATHER_INFO
2014-12-03Name : The remote Fedora host is missing a security update.
File : fedora_2014-14791.nasl - Type : ACT_GATHER_INFO
2014-11-21Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-1859.nasl - Type : ACT_GATHER_INFO
2014-11-21Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-1861.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-1859.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-1861.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-1859.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-1861.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20141117_mariadb_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2014-11-18Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20141117_mysql55_mysql_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2014-10-21Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3054.nasl - Type : ACT_GATHER_INFO
2014-10-16Name : The remote Ubuntu host is missing a security-related patch.
File : ubuntu_USN-2384-1.nasl - Type : ACT_GATHER_INFO
2014-10-12Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2014-329.nasl - Type : ACT_GATHER_INFO
2014-10-10Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL14410.nasl - Type : ACT_GATHER_INFO