Vulnerability Description
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Audit Log.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Mysql | >= 5.5.0, <= 5.5.31 |
| Oracle | Solaris | 11.3 |
| Opensuse | Opensuse | 11.4 |
| Suse | Linux Enterprise Desktop | 11 |
| Suse | Linux Enterprise Server | 11 |
| Suse | Linux Enterprise Software Development Kit | 11 |
| Canonical | Ubuntu Linux | 10.04 |
| Mariadb | Mariadb | >= 5.5.0, < 5.5.32 |
References
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.htmlMailing ListThird Party Advisory
- http://osvdb.org/95322Broken LinkPermissions RequiredThird Party Advisory
- http://secunia.com/advisories/54300Permissions RequiredThird Party Advisory
- http://www.debian.org/security/2013/dsa-2818Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.htmlVendor Advisory
- http://www.ubuntu.com/usn/USN-1909-1Third Party Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85709Third Party AdvisoryVDB Entry
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00022.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-10/msg00001.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00024.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-09/msg00008.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2013-3809?
CVE-2013-3809 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to A...
How severe is CVE-2013-3809?
CVE-2013-3809 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-3809?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Mysql, Oracle Solaris, Opensuse Opensuse, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server.