Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2014-4260 | First vendor Publication | 2014-07-17 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:S/C:N/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 5.5 | Attack Range | Network |
| Cvss Impact Score | 4.9 | Attack Complexity | Low |
| Cvss Expoit Score | 8 | Authentication | Requires single instance |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.37 and earlier, and 5.6.17 and earlier, allows remote authenticated users to affect integrity and availability via vectors related to SRCHAR. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4260 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:25101 | |||
| Oval ID: | oval:org.mitre.oval:def:25101 | ||
| Title: | USN-2291-1 -- mysql-5.5 vulnerabilities | ||
| Description: | Several security issues were fixed in MySQL. | ||
| Family: | unix | Class: | patch |
| Reference(s): | USN-2291-1 CVE-2014-2494 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 | Version: | 3 |
| Platform(s): | Ubuntu 14.04 Ubuntu 12.04 | Product(s): | mysql-5.5 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:26099 | |||
| Oval ID: | oval:org.mitre.oval:def:26099 | ||
| Title: | DSA-2985-1 -- mysql-5.5 - security update | ||
| Description: | Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.38. Please see the MySQL 5.5 Release Notes and Oracle's Critical Patch Update advisory for further details. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2985-1 CVE-2014-2494 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 7 Debian GNU/kFreeBSD 7 | Product(s): | mysql-5.5 |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2014-12-11 | IAVM : 2014-B-0162 - VMware vCenter Server 5.1 Certificate Validation Vulnerability Severity : Category I - VMSKEY : V0057685 |
| 2014-12-11 | IAVM : 2014-B-0159 - VMware vCenter Server Appliance 5.1 Cross-site Scripting Vulnerability Severity : Category II - VMSKEY : V0057687 |
| 2014-12-11 | IAVM : 2014-A-0191 - VMware vCenter Server 5.0 Certificate Validation Vulnerability Severity : Category I - VMSKEY : V0057699 |
| 2014-12-11 | IAVM : 2014-B-0161 - Multiple Vulnerabilities in VMware ESXi 5.1 Severity : Category I - VMSKEY : V0057717 |
| 2014-07-17 | IAVM : 2014-A-0106 - Multiple Vulnerabilities in Oracle MySQL Product Suite Severity : Category I - VMSKEY : V0053189 |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2015-12-30 | Name : The remote VMware ESXi host is missing a security-related patch. File : vmware_VMSA-2014-0012_remote.nasl - Type : ACT_GATHER_INFO |
| 2015-05-20 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-0743-1.nasl - Type : ACT_GATHER_INFO |
| 2015-03-30 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2015-091.nasl - Type : ACT_GATHER_INFO |
| 2014-12-12 | Name : The remote host has a virtualization management application installed that is... File : vmware_vcenter_vmsa-2014-0012.nasl - Type : ACT_GATHER_INFO |
| 2014-12-12 | Name : The remote host has an update manager installed that is affected by multiple ... File : vmware_vcenter_update_mgr_vmsa-2014-0012.nasl - Type : ACT_GATHER_INFO |
| 2014-12-12 | Name : The remote host has a virtualization appliance installed that is affected by ... File : vmware_vcenter_server_appliance_vmsa-2014-0012.nasl - Type : ACT_GATHER_INFO |
| 2014-12-12 | Name : The remote VMware ESXi 5.1 host is affected by multiple vulnerabilities. File : vmware_esxi_5_1_build_2323236_remote.nasl - Type : ACT_GATHER_INFO |
| 2014-12-06 | Name : The remote VMware ESXi host is missing a security-related patch. File : vmware_VMSA-2014-0012.nasl - Type : ACT_GATHER_INFO |
| 2014-11-26 | Name : The remote OracleVM host is missing a security update. File : oraclevm_OVMSA-2014-0012.nasl - Type : ACT_GATHER_INFO |
| 2014-11-21 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2014-1861.nasl - Type : ACT_GATHER_INFO |
| 2014-11-21 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2014-1859.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20141117_mysql55_mysql_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20141117_mariadb_on_SL7_x.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2014-1861.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2014-1859.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2014-1861.nasl - Type : ACT_GATHER_INFO |
| 2014-11-18 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2014-1859.nasl - Type : ACT_GATHER_INFO |
| 2014-08-29 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libmysql55client18-140820.nasl - Type : ACT_GATHER_INFO |
| 2014-08-29 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libmysql55client18-140819.nasl - Type : ACT_GATHER_INFO |
| 2014-07-23 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2985.nasl - Type : ACT_GATHER_INFO |
| 2014-07-18 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2291-1.nasl - Type : ACT_GATHER_INFO |
| 2014-07-16 | Name : The remote database server is affected by multiple vulnerabilities. File : mysql_5_5_38.nasl - Type : ACT_GATHER_INFO |
| 2014-07-16 | Name : The remote database server is affected by multiple vulnerabilities. File : mysql_5_6_19.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 12:41:21 |
|
| 2024-08-02 12:28:44 |
|
| 2024-08-02 01:08:38 |
|
| 2024-02-02 01:27:55 |
|
| 2024-02-01 12:08:17 |
|
| 2023-09-05 12:26:27 |
|
| 2023-09-05 01:08:11 |
|
| 2023-09-02 12:26:27 |
|
| 2023-09-02 01:08:18 |
|
| 2023-08-12 12:28:48 |
|
| 2023-08-12 01:07:48 |
|
| 2023-08-11 12:24:35 |
|
| 2023-08-11 01:08:00 |
|
| 2023-08-06 12:23:53 |
|
| 2023-08-06 01:07:46 |
|
| 2023-08-04 12:23:57 |
|
| 2023-08-04 01:07:51 |
|
| 2023-07-14 12:23:56 |
|
| 2023-07-14 01:07:49 |
|
| 2023-03-29 01:25:46 |
|
| 2023-03-28 12:08:10 |
|
| 2022-10-11 12:21:36 |
|
| 2022-10-11 01:07:58 |
|
| 2022-09-20 12:18:52 |
|
| 2022-07-19 21:27:53 |
|
| 2021-05-05 01:15:24 |
|
| 2021-05-04 12:32:32 |
|
| 2021-04-22 01:39:51 |
|
| 2020-11-10 01:11:40 |
|
| 2020-05-23 01:52:26 |
|
| 2020-05-23 00:41:24 |
|
| 2019-10-09 12:06:27 |
|
| 2019-10-09 01:06:40 |
|
| 2019-06-08 12:06:15 |
|
| 2019-06-04 12:05:51 |
|
| 2019-05-02 12:05:46 |
|
| 2019-04-27 12:04:06 |
|
| 2019-04-26 12:05:55 |
|
| 2019-01-01 12:05:46 |
|
| 2018-12-21 12:05:41 |
|
| 2018-10-10 00:19:51 |
|
| 2018-07-25 12:04:37 |
|
| 2018-04-26 12:01:11 |
|
| 2018-01-20 12:05:25 |
|
| 2017-10-25 12:01:49 |
|
| 2017-08-29 09:24:37 |
|
| 2017-08-22 12:01:40 |
|
| 2017-05-05 12:01:20 |
|
| 2017-04-29 12:05:07 |
|
| 2017-02-01 12:01:38 |
|
| 2017-01-26 12:04:49 |
|
| 2017-01-07 09:25:38 |
|
| 2017-01-03 09:22:53 |
|
| 2016-11-04 00:23:09 |
|
| 2016-10-27 12:00:48 |
|
| 2016-10-26 05:31:32 |
|
| 2016-10-18 12:03:55 |
|
| 2016-09-22 12:02:20 |
|
| 2016-07-22 12:02:56 |
|
| 2016-04-27 00:58:18 |
|
| 2015-05-21 13:31:26 |
|
| 2015-03-31 13:28:38 |
|
| 2014-12-12 09:23:53 |
|
| 2014-11-22 13:23:58 |
|
| 2014-11-19 13:25:12 |
|
| 2014-11-19 05:34:22 |
|
| 2014-11-14 13:28:26 |
|
| 2014-08-30 13:25:32 |
|
| 2014-08-01 09:22:55 |
|
| 2014-07-24 13:25:33 |
|
| 2014-07-24 09:24:37 |
|
| 2014-07-19 21:23:25 |
|
| 2014-07-19 13:24:35 |
|
| 2014-07-17 21:24:35 |
|
| 2014-07-17 17:22:37 |
|
