CVE-2012-2750 — HIGH (10.0)

Q: How severe is CVE-2012-2750?

CVE-2012-2750 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2012-2750?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Mysql, Mariadb Mariadb, Debian Debian Linux.

Vulnerability Description

Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Oracle	Mysql	>= 5.5.0, < 5.5.23
Mariadb	Mariadb	>= 5.5.0, <= 5.5.23
Debian	Debian Linux	6.0

References

http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.htmlBroken Link
http://www.debian.org/security/2013/dsa-2780Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:250Third Party Advisory
http://www.securityfocus.com/bid/63125Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1029184Broken LinkThird Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=833742Issue TrackingThird Party Advisory
http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.htmlBroken Link
http://www.debian.org/security/2013/dsa-2780Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:250Third Party Advisory
http://www.securityfocus.com/bid/63125Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1029184Broken LinkThird Party AdvisoryVDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=833742Issue TrackingThird Party Advisory

FAQ

What is CVE-2012-2750?

CVE-2012-2750 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20...

How severe is CVE-2012-2750?

CVE-2012-2750 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-2750?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Mysql, Mariadb Mariadb, Debian Debian Linux.