CVE-2015-4816

MEDIUM

Description

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

References

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177539.html

http://rhn.redhat.com/errata/RHSA-2015-1628.html

http://rhn.redhat.com/errata/RHSA-2016-0534.html

http://rhn.redhat.com/errata/RHSA-2016-1481.html

http://www.debian.org/security/2015/dsa-3377

http://www.debian.org/security/2015/dsa-3385

http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

http://www.securityfocus.com/bid/77134

http://www.securitytracker.com/id/1033894

http://www.ubuntu.com/usn/USN-2781-1

https://access.redhat.com/errata/RHSA-2016:1132

Details

Source: MITRE

Published: 2015-10-21

Updated: 2019-12-27

Risk Information

CVSS v2.0

Base Score: 4

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 8

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* versions up to 5.5.44 (inclusive)

Configuration 3

OR

cpe:2.3:o:oracle:linux:7:*:*:*:*:*:*:*

cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*

Tenable Plugins

View all (20 total)

IDNameProductFamilySeverity
99774EulerOS 2.0 SP1 : mariadb (EulerOS-SA-2016-1011)NessusHuawei Local Security Checks
medium
93846MariaDB 5.5.x < 5.5.45 Multiple VulnerabilitiesNessusDatabases
high
93845MariaDB 10.0.x < 10.0.21 Multiple VulnerabilitiesNessusDatabases
high
9252Oracle MySQL 5.5.x < 5.5.46 / 5.6.x < 5.6.27 Multiple VulnerabilitiesNessus Network MonitorDatabase
high
90345Scientific Linux Security Update : mariadb on SL7.x x86_64 (20160404)NessusScientific Linux Local Security Checks
high
90300RHEL 7 : mariadb (RHSA-2016:0534)NessusRed Hat Local Security Checks
high
90296Oracle Linux 7 : mariadb (ELSA-2016-0534)NessusOracle Linux Local Security Checks
high
90276CentOS 7 : mariadb (CESA-2016:0534)NessusCentOS Local Security Checks
high
89628Fedora 23 : mariadb-10.0.23-1.fc23 (2016-e30164d0a2)NessusFedora Local Security Checks
high
87964SUSE SLED12 / SLES12 Security Update : mariadb (SUSE-SU-2016:0121-1)NessusSuSE Local Security Checks
high
87525SUSE SLED11 / SLES11 Security Update : mysql (SUSE-SU-2015:2303-1)NessusSuSE Local Security Checks
high
87442openSUSE Security Update : mysql (openSUSE-2015-889) (BACKRONYM)NessusSuSE Local Security Checks
high
86679Debian DSA-3385-1 : mariadb-10.0 - security updateNessusDebian Local Security Checks
high
86657Oracle MySQL 5.5.x < 5.5.45 Multiple Vulnerabilities (October 2015 CPU)NessusDatabases
high
86617Ubuntu 12.04 LTS / 14.04 LTS / 15.04 / 15.10 : mysql-5.5, mysql-5.6 vulnerabilities (USN-2781-1)NessusUbuntu Local Security Checks
high
86580Debian DSA-3377-1 : mysql-5.5 - security updateNessusDebian Local Security Checks
high
86546MySQL 5.5.x < 5.5.46 Multiple VulnerabilitiesNessusDatabases
high
85488Oracle Linux 5 : mysql55-mysql (ELSA-2015-1628)NessusOracle Linux Local Security Checks
high
85460CentOS 5 : mysql55-mysql (CESA-2015:1628)NessusCentOS Local Security Checks
high
85443RHEL 5 : mysql55-mysql (RHSA-2015:1628)NessusRed Hat Local Security Checks
high