CVE-2015-4757

Опубликовано: 16 июл. 2015

Источник: nvd

CVSS2: 3.5

EPSS Низкий

Описание

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

Ссылки

http://lists.opensuse.org/opensuse-updates/2015-09/msg00042.html
Mailing List
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1628.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1629.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1630.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1646.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1647.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1665.html
Third Party Advisory
http://www.debian.org/security/2015/dsa-3311
Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/75759
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032911
Broken Link
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/USN-2674-1
Third Party Advisory
https://security.gentoo.org/glsa/201610-06
Third Party Advisory
http://lists.opensuse.org/opensuse-updates/2015-09/msg00042.html
Mailing List
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1628.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1629.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1630.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1646.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1647.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-1665.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Версия от 5.5.0 (включая) до 5.5.42 (включая)

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Версия от 5.6.0 (включая) до 5.6.23 (включая)

Конфигурация 3

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Конфигурация 4

Одно из

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.1:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.3:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Конфигурация 6

Одно из

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Версия от 5.5.0 (включая) до 5.5.43 (исключая)

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

Версия от 10.0.0 (включая) до 10.0.18 (исключая)

EPSS

Процентиль: 68%

0.00598

Низкий

3.5 Low

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2015-4757

ubuntu

почти 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

CVE-2015-4757

redhat

почти 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

CVE-2015-4757

debian

почти 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier an ...

GHSA-vx7r-p6jx-hf82

github

около 3 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

BDU:2015-11052

fstec

почти 10 лет назад

Уязвимость системы управления базами данных MySQL, позволяющая нарушителю нарушить доступность защищаемой информации

EPSS

Процентиль: 68%

0.00598

Низкий

3.5 Low

CVSS2

Дефекты

NVD-CWE-noinfo