PT-2015-1112 · Mysql Server+2 · Mysql Server+2

Published

2015-04-16

Updated

2018-05-03

CVE-2015-0439

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions MySQL Server versions 5.6.22 and earlier

Description The issue allows a remote authenticated attacker to impact data availability using the Server: InnoDB subcomponent. The estimated number of potentially affected devices worldwide is not specified. Details about real-world incidents where this issue was exploited are not provided. Technical details about exploitation, such as API endpoints, vulnerable parameters or variables, and function names, are not mentioned.

Recommendations For MySQL Server versions 5.6.22 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALT-PU-2018-1647

BDU:2015-09984

CVE-2015-0439

Affected Products

Alt Linux

Mysql Server

Suse

PT-2015-1112 · Mysql Server+2 · Mysql Server+2

CVE-2015-0439

Weakness Enumeration

Related Identifiers

Affected Products

References · 249