CVE-2013-0368

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html	Vendor Advisory
http://www.ubuntu.com/usn/USN-1703-1
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://secunia.com/advisories/53372
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17255

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:mysql:5.5.26:::::::*
	cpe:2.3:a:oracle:mysql:5.5.24:::::::*
	cpe:2.3:a:oracle:mysql:5.5.15:::::::*
	cpe:2.3:a:oracle:mysql:5.5.14:::::::*
	cpe:2.3:a:oracle:mysql:5.5.9:::::::*
	cpe:2.3:a:oracle:mysql:5.5.1:::::::*
	cpe:2.3:a:oracle:mysql:5.5.0:::::::*
	cpe:2.3:a:oracle:mysql:5.5.23:::::::*
	cpe:2.3:a:oracle:mysql:5.5.22:::::::*
	cpe:2.3:a:oracle:mysql:5.5.17:::::::*
	cpe:2.3:a:oracle:mysql:5.5.16:::::::*
	cpe:2.3:a:oracle:mysql:5.5.27:::::::*
	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql:5.5.3:::::::*
	cpe:2.3:a:oracle:mysql:5.5.2:::::::*
	cpe:2.3:a:oracle:mysql:5.5.21:::::::*
	cpe:2.3:a:oracle:mysql:5.5.19:::::::*
	cpe:2.3:a:oracle:mysql:5.5.18:::::::*
	cpe:2.3:a:oracle:mysql:5.5.11:::::::*
	cpe:2.3:a:oracle:mysql:5.5.10:::::::*
	cpe:2.3:a:oracle:mysql:5.5.5:::::::*
	cpe:2.3:a:oracle:mysql:5.5.4:::::::*
	cpe:2.3:a:oracle:mysql:5.5.25:a::::::
	cpe:2.3:a:oracle:mysql:5.5.25:::::::*
	cpe:2.3:a:oracle:mysql:5.5.20:::::::*
	cpe:2.3:a:oracle:mysql:5.5.13:::::::*
	cpe:2.3:a:oracle:mysql:5.5.12:::::::*
	cpe:2.3:a:oracle:mysql:5.5.7:::::::*
	cpe:2.3:a:oracle:mysql:5.5.6:::::::*

Information

Published : 2013-01-17 01:55

Updated : 2019-12-17 15:25

NVD link : CVE-2013-0368

Mitre link : CVE-2013-0368

JSON object : View

Products Affected

oracle

mysql

CWE

NVD-CWE-noinfo

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html", "name": "http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.ubuntu.com/usn/USN-1703-1", "name": "USN-1703-1", "tags": [], "refsource": "UBUNTU"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "name": "MDVSA-2013:150", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://security.gentoo.org/glsa/glsa-201308-06.xml", "name": "GLSA-201308-06", "tags": [], "refsource": "GENTOO"}, {"url": "http://secunia.com/advisories/53372", "name": "53372", "tags": [], "refsource": "SECUNIA"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17255", "name": "oval:org.mitre.oval:def:17255", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-0368", "ASSIGNER": "secalert_us@oracle.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2013-01-17T01:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.24:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.5.28"}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.25:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.25:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:mysql:5.5.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2019-12-17T15:25Z"}