Vulnerability Description
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SERVER:DML.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mariadb | Mariadb | >= 5.5.0, < 5.5.40 |
| Oracle | Mysql | >= 5.5.0, <= 5.5.39 |
| Suse | Linux Enterprise Desktop | 12 |
| Suse | Linux Enterprise Server | 12 |
| Suse | Linux Enterprise Software Development Kit | 12 |
| Suse | Linux Enterprise Workstation Extension | 12 |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.htmlMailing ListThird Party Advisory
- http://secunia.com/advisories/61579Not Applicable
- http://secunia.com/advisories/62073Not Applicable
- http://security.gentoo.org/glsa/glsa-201411-02.xmlThird Party Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/70530Third Party AdvisoryVDB Entry
- http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.htmlMailing ListThird Party Advisory
- http://secunia.com/advisories/61579Not Applicable
- http://secunia.com/advisories/62073Not Applicable
- http://security.gentoo.org/glsa/glsa-201411-02.xmlThird Party Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.htmlPatchVendor Advisory
FAQ
What is CVE-2014-6555?
CVE-2014-6555 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related ...
How severe is CVE-2014-6555?
CVE-2014-6555 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-6555?
Check the references section above for vendor advisories and patch information. Affected products include: Mariadb Mariadb, Oracle Mysql, Suse Linux Enterprise Desktop, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit.