fkie_nvd - fkie_cve-2014-2434

fkie_cve-2014-2434

Vulnerability from fkie_nvd

Published

2014-04-16 02:55

Modified

2025-04-12 10:46

Severity ?

Summary

Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to DML.

References

URL	Tags
secalert_us@oracle.com	http://security.gentoo.org/glsa/glsa-201409-04.xml
secalert_us@oracle.com	http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html	Vendor Advisory
secalert_us@oracle.com	http://www.securityfocus.com/bid/66872
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-201409-04.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/66872

Impacted products

Vendor	Product	Version
oracle	mysql	*
oracle	mysql	5.6.0
oracle	mysql	5.6.1
oracle	mysql	5.6.2
oracle	mysql	5.6.3
oracle	mysql	5.6.4
oracle	mysql	5.6.5
oracle	mysql	5.6.6
oracle	mysql	5.6.7
oracle	mysql	5.6.8
oracle	mysql	5.6.9
oracle	mysql	5.6.10
oracle	mysql	5.6.11
oracle	mysql	5.6.12
oracle	mysql	5.6.13
oracle	mysql	5.6.14

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "66BE6326-E35C-4FE5-A556-AAEB653FA50F",
              "versionEndIncluding": "5.6.15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0089EDF-4806-417D-A4F1-63FF03C5AEF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "898A5CD5-83A5-4335-835F-759F82862753",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "C851FA0E-357E-4B9E-A441-9C74B3526B37",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B12FA18C-AB93-4522-AA2C-303342452E59",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "6FD31981-E3ED-41D0-92EB-ABA7490D60E5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E918FF1-8B40-4DC3-9269-1D3BFD18C58D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "4BCD7C2D-49E9-4D78-90CF-F747A1584269",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "7956E471-E98A-4527-A5F4-863210E09D5A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "615F499A-5C33-4E79-80FA-9A1453D8A3D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AD40EA2-F432-4F89-9E59-0DB4D415CA85",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "41494A2D-4BBC-4C3B-841F-878C2430A444",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "A62DA4D8-27B4-4026-9035-75AC35F58439",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DF5346-DC9A-4615-BEAC-2F5FD57C3B6B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "E948C884-E747-4E7C-B111-4A8DA22E421C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:mysql:5.6.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F933CF3-A850-4D3F-A16D-8129E246BF55",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Oracle MySQL Server 5.6.15 and earlier allows remote authenticated users to affect availability via vectors related to DML."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en Oracle MySQL Server 5.6.15 y anteriores permite a usuarios remotos autenticados afectar la disponibilidad a trav\u00e9s de vectores relacionados con DML."
    }
  ],
  "id": "CVE-2014-2434",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-04-16T02:55:16.193",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "url": "http://security.gentoo.org/glsa/glsa-201409-04.xml"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securityfocus.com/bid/66872"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-201409-04.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/66872"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2014-2434 (GCVE-0-2014-2434)

Vulnerability from cvelistv5

Published

2014-04-16 02:05