CVE-2014-2438

LOW

Details

Source: MITRE

Published: 2014-04-16

Updated: 2019-12-17

Risk Information

CVSS v2.0

Base Score: 3.5

Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 6.8

Severity: LOW

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:oracle:mysql:5.5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.26:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.27:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.28:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.29:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.30:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.31:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.32:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.33:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.5.34:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions up to 5.5.35 (inclusive)

Configuration 2

OR

cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions up to 5.6.15 (inclusive)

Tenable Plugins

View all (27 total)

IDNameProductFamilySeverity
72713MariaDB 10 < 10.0.9 Multiple DoS VulnerabilitiesNessusDatabases
medium
9283MariaDB Server 10.0.x < 10.0.21 Multiple VulnerabilitiesNessus Network MonitorDatabase
medium
82344Mandriva Linux Security Advisory : mariadb (MDVSA-2015:091)NessusMandriva Local Security Checks
high
78272Amazon Linux AMI : mysql55 (ALAS-2014-329)NessusAmazon Linux Local Security Checks
medium
77548GLSA-201409-04 : MySQL: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
76897RHEL 7 : mariadb (RHSA-2014:0702)NessusRed Hat Local Security Checks
medium
76735Oracle Linux 7 : mariadb (ELSA-2014-0702)NessusOracle Linux Local Security Checks
medium
74373SuSE 11.3 Security Update : MySQL (SAT Patch Number 9303)NessusSuSE Local Security Checks
critical
74255Slackware 14.1 / current : mariadb (SSA:2014-152-01)NessusSlackware Local Security Checks
medium
74172Scientific Linux Security Update : mysql55-mysql on SL5.x i386/x86_64 (20140522)NessusScientific Linux Local Security Checks
medium
74144RHEL 5 : mysql55-mysql (RHSA-2014:0536)NessusRed Hat Local Security Checks
medium
74143Oracle Linux 5 : mysql55-mysql (ELSA-2014-0536)NessusOracle Linux Local Security Checks
medium
74142CentOS 6 : Moderate: / mysql55-mysql (CESA-2014:0537)NessusCentOS Local Security Checks
medium
74141CentOS 5 : mysql55-mysql (CESA-2014:0536)NessusCentOS Local Security Checks
medium
74128CentOS 6 : Moderate: / mariadb55-mariadb (CESA-2014:0522)NessusCentOS Local Security Checks
medium
74080Mandriva Linux Security Advisory : mariadb (MDVSA-2014:102)NessusMandriva Local Security Checks
medium
74046Fedora 20 : mariadb-galera-5.5.37-2.fc20 (2014-6120)NessusFedora Local Security Checks
medium
73855Debian DSA-2919-1 : mysql-5.5 - security updateNessusDebian Local Security Checks
high
73750Fedora 19 : mariadb-5.5.37-1.fc19 (2014-5409)NessusFedora Local Security Checks
medium
73749Fedora 19 : community-mysql-5.5.37-1.fc19 (2014-5396)NessusFedora Local Security Checks
medium
73748Fedora 20 : mariadb-5.5.37-1.fc20 (2014-5393)NessusFedora Local Security Checks
medium
73747Fedora 20 : community-mysql-5.5.37-1.fc20 (2014-5369)NessusFedora Local Security Checks
medium
73680Ubuntu 12.04 LTS / 12.10 / 13.10 / 14.04 LTS : mysql-5.5 vulnerabilities (USN-2170-1)NessusUbuntu Local Security Checks
high
8211Oracle MySQL 5.5.x <= 5.5.35 / 5.6.x <= 5.6.15 Multiple VulnerabilitiesNessus Network MonitorDatabase
medium
8212Oracle MySQL 5.5.x <= 5.5.36 / 5.6.x <= 5.6.16 Multiple VulnerabilitiesNessus Network MonitorDatabase
medium
73573MySQL 5.6.x < 5.6.16 Multiple VulnerabilitiesNessusDatabases
medium
73572MySQL 5.5.x < 5.5.36 Multiple VulnerabilitiesNessusDatabases
high