CVE-2014-6494
Advisory lineage Upstream: 0 Downstream: 5
Modified
Published: 15 Oct 2014, 22:03
Last modified:06 Aug 2024, 12:17
Vulnerability Summary
Overall Risk (default)
low
17/100 CVSS Score
4.3 MEDIUM
v2.0 (nvd)
EPSS Score
1.02% LOW
1% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Oct 2014, 22:03
Published
Vulnerability first disclosed
06 Aug 2024, 12:17
Last Modified
Vulnerability information updated
Description
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect availability via vectors related to CLIENT:SSL:yaSSL, a different vulnerability than CVE-2014-6496.
CVSS Metrics
- v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS Trends
Current EPSS score: 1.02%• Percentile: 78%
Affected Systems
- juniper•junos_space
≤ 15.1
- mariadb•mariadb
≥ 5.5.0, < 5.5.40 | ≥ 10.0.0, < 10.0.15
- oracle•mysql
≥ 5.5.0, ≤ 5.5.39 | ≥ 5.6.0, ≤ 5.6.20
- Unknown•Solaris
11.3
- suse•linux_enterprise_desktop
12
- suse•linux_enterprise_server
12
- suse•linux_enterprise_software_development_kit
12
- suse•linux_enterprise_workstation_extension
12
References (9)
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698
- http://secunia.com/advisories/62073
- http://www.securityfocus.com/bid/70497
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html
- http://security.gentoo.org/glsa/glsa-201411-02.xml
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
- http://secunia.com/advisories/61579
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html