CVE-2014-0430

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.

CVSS v2.0 2.8 LOW

2.8^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:M/C:N/I:N/A:P

Exploitability : 5.5 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication MULTIPLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/102076
http://secunia.com/advisories/56491
http://security.gentoo.org/glsa/glsa-201409-04.xml
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html	Vendor Advisory
http://www.securityfocus.com/bid/64758
http://www.securityfocus.com/bid/64893
https://exchange.xforce.ibmcloud.com/vulnerabilities/90387

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql:5.6.0:::::::*
	cpe:2.3:a:oracle:mysql:5.6.1:::::::*
	cpe:2.3:a:oracle:mysql:5.6.2:::::::*
	cpe:2.3:a:oracle:mysql:5.6.3:::::::*
	cpe:2.3:a:oracle:mysql:5.6.4:::::::*
	cpe:2.3:a:oracle:mysql:5.6.5:::::::*
	cpe:2.3:a:oracle:mysql:5.6.6:::::::*
	cpe:2.3:a:oracle:mysql:5.6.7:::::::*
	cpe:2.3:a:oracle:mysql:5.6.8:::::::*
	cpe:2.3:a:oracle:mysql:5.6.9:::::::*
	cpe:2.3:a:oracle:mysql:5.6.10:::::::*
	cpe:2.3:a:oracle:mysql:5.6.11:::::::*
	cpe:2.3:a:oracle:mysql:5.6.12:::::::*

History

No history.

Information

Published : 2014-01-15 16:08

Updated : 2017-08-29 01:34

NVD link : CVE-2014-0430

Mitre link : CVE-2014-0430

CVE.ORG link : CVE-2014-0430

JSON object : View

Products Affected

oracle

mysql

CWE

NVD-CWE-noinfo

{"id": "CVE-2014-0430", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:M/C:N/I:N/A:P", "authentication": "MULTIPLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 5.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-01-15T16:08:10.407", "references": [{"url": "http://osvdb.org/102076", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/56491", "source": "secalert_us@oracle.com"}, {"url": "http://security.gentoo.org/glsa/glsa-201409-04.xml", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/64758", "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/64893", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90387", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente MySQL Server de Oracle MySQL 5.6.13 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a trav\u00e9s de vectores relacionados con Performance Schema."}], "lastModified": "2017-08-29T01:34:10.637", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "115833AB-D7B8-4438-80EF-9D8BF6F7DB23", "versionEndIncluding": "5.6.13"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439"}, {"criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}