CVE-2012-3149

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.26 and earlier allows remote authenticated users to affect confidentiality, related to MySQL Client.

CVSS v2.0 3.5 LOW

3.5^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/51177
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html	Patch Vendor Advisory
http://www.ubuntu.com/usn/USN-1621-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/79390

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql:5.5.0:::::::*
	cpe:2.3:a:oracle:mysql:5.5.1:::::::*
	cpe:2.3:a:oracle:mysql:5.5.2:::::::*
	cpe:2.3:a:oracle:mysql:5.5.3:::::::*
	cpe:2.3:a:oracle:mysql:5.5.4:::::::*
	cpe:2.3:a:oracle:mysql:5.5.5:::::::*
	cpe:2.3:a:oracle:mysql:5.5.6:::::::*
	cpe:2.3:a:oracle:mysql:5.5.7:::::::*
	cpe:2.3:a:oracle:mysql:5.5.9:::::::*
	cpe:2.3:a:oracle:mysql:5.5.10:::::::*
	cpe:2.3:a:oracle:mysql:5.5.11:::::::*
	cpe:2.3:a:oracle:mysql:5.5.12:::::::*
	cpe:2.3:a:oracle:mysql:5.5.13:::::::*
	cpe:2.3:a:oracle:mysql:5.5.14:::::::*
	cpe:2.3:a:oracle:mysql:5.5.15:::::::*
	cpe:2.3:a:oracle:mysql:5.5.16:::::::*
	cpe:2.3:a:oracle:mysql:5.5.17:::::::*
	cpe:2.3:a:oracle:mysql:5.5.18:::::::*
	cpe:2.3:a:oracle:mysql:5.5.19:::::::*
	cpe:2.3:a:oracle:mysql:5.5.20:::::::*
	cpe:2.3:a:oracle:mysql:5.5.21:::::::*
	cpe:2.3:a:oracle:mysql:5.5.22:::::::*
	cpe:2.3:a:oracle:mysql:5.5.23:::::::*
	cpe:2.3:a:oracle:mysql:5.5.24:::::::*
	cpe:2.3:a:oracle:mysql:5.5.25:::::::*
	cpe:2.3:a:oracle:mysql:5.5.25:a::::::

History

No history.

Information

Published : 2012-10-16 23:55

Updated : 2019-12-17 15:25

NVD link : CVE-2012-3149

Mitre link : CVE-2012-3149

CVE.ORG link : CVE-2012-3149

JSON object : View

Products Affected

oracle

mysql

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-3149", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-10-16T23:55:03.713", "references": [{"url": "http://secunia.com/advisories/51177", "source": "secalert_us@oracle.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.ubuntu.com/usn/USN-1621-1", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/79390", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.26 and earlier allows remote authenticated users to affect confidentiality, related to MySQL Client."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente de MySQL Server v5.5.26 y anteriores de Oracle MySQL, permite a usuarios remotos autenticados afectar a la confidencialidad, relacionado con MySQL Client."}], "lastModified": "2019-12-17T15:25:27.643", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5023C03B-8405-4C36-935C-F8A5B89FEEF3", "versionEndIncluding": "5.5.26"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F15ADFE-4C28-4F37-91C8-1963E38056FA"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD918B47-8319-478B-AB6A-18F502DA691E"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46395846-C122-470B-8CCC-E8136BB30242"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD8ED2D4-FF24-4F01-A733-26B8B2732304"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C4F8BA70-7825-4A7C-A9F1-9303AD5AFA45"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA738715-C5B0-45AC-949A-F11BF8F94737"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCD7AACD-8481-4868-973B-A5593A370CD7"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE473AF8-C0F0-42A7-B676-E2364E587689"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD62B5E1-6BF5-4702-938B-3100E3E6BE16"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "312DACA6-F414-4EA8-A817-6E1C506AF780"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6095FC85-BF0E-423C-9311-0B6387E91F4B"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD0E8107-CAEA-44D7-B82D-2571F7A7E65B"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB58C978-1FBE-4BF9-A473-C99FBF943484"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5079BA1C-B1A7-4298-BC8A-EBD63AA45186"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94F7A061-66FE-4EAD-918B-6C4500A21BE4"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DED856E3-69A6-4681-B1EF-871810E8F7C8"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C147F1EE-29ED-4211-9F7E-8D0172BD0045"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0812F864-91E0-4B3E-9CB3-33B7514B9330"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77E105E9-FE65-4B75-9818-D3897294E941"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCC68032-1200-4506-A678-E7DF474E9C28"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19518B17-0C4B-4589-BB41-87DAF0AB4BC6"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54047553-C08F-474C-8650-89AAAC68056B"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41EE02F4-02F7-49A3-AFCA-C20BA2AF65C2"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97045EB4-F22C-4694-BFB2-C1EA72705206"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88DC6246-988E-4259-8BAF-4F104ED12936"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C34D221E-E9D9-4A1D-B3BC-CB66456D004B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}