CVE-2012-2750
HIGH severity · CVSS 10
10CVSS HIGH
Summary
Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)4%
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.html
- http://www.debian.org/security/2013/dsa-2780Advisory
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:250Advisory
- http://www.securityfocus.com/bid/63125Advisory
- http://www.securitytracker.com/id/1029184Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=833742Advisory