CVE-2014-6478MEDIUM
Description
Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote attackers to affect integrity via vectors related to SERVER:SSL:yaSSL.
References
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Details
Source: MITRE
Published: 2014-10-15
Updated: 2018-12-18
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:* versions up to 15.1 (inclusive)
Configuration 2
OR
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions from 5.5.0 to 5.5.38 (inclusive)
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions from 5.6.0 to 5.6.19 (inclusive)
Configuration 3
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 129359 | MariaDB 10.0.0 < 10.0.13 Multiple Vulnerabilities | Nessus | Databases | medium |
| 129354 | MariaDB 5.5.0 < 5.5.39 Multiple Vulnerabilities | Nessus | Databases | medium |
| 91778 | Juniper Junos Space < 15.1R1 Multiple Vulnerabilities (JSA10698) | Nessus | Junos Local Security Checks | critical |
| 83716 | SUSE SLED12 / SLES12 Security Update : mariadb (SUSE-SU-2015:0743-1) | Nessus | SuSE Local Security Checks | high |
| 82428 | SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387) | Nessus | SuSE Local Security Checks | high |
| 82344 | Mandriva Linux Security Advisory : mariadb (MDVSA-2015:091) | Nessus | Mandriva Local Security Checks | high |
| 79671 | Fedora 20 : mariadb-galera-5.5.40-2.fc20 (2014-14791) | Nessus | Fedora Local Security Checks | medium |
| 78589 | Debian DSA-3054-1 : mysql-5.5 - security update | Nessus | Debian Local Security Checks | high |
| 78505 | Ubuntu 12.04 LTS / 14.04 LTS : mysql-5.5 vulnerabilities (USN-2384-1) | Nessus | Ubuntu Local Security Checks | high |
| 8386 | Oracle MySQL 5.5.x < 5.5.39 / 5.6.x < 5.6.20 Multiple Vulnerabilities | Nessus Network Monitor | Database | medium |
| 77670 | MySQL 5.6.x < 5.6.20 Multiple Vulnerabilities (October 2014 CPU) | Nessus | Databases | medium |
| 77669 | MySQL 5.5.x < 5.5.39 Multiple Vulnerabilities (October 2014 CPU) | Nessus | Databases | medium |