Vulnerability Description
Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Mysql | <= 5.6.22 |
| Oracle | Communications Policy Management | <= 9.7.3 |
| Novell | Suse Linux Enterprise Software Development Kit | 11.0 |
| Novell | Suse Linux Enterprise Desktop | 11.0 |
| Novell | Suse Linux Enterprise Server | 11.0 |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlThird Party Advisory
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.htmlVendor Advisory
- http://www.securitytracker.com/id/1032121
- https://security.gentoo.org/glsa/201507-19
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlThird Party Advisory
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlVendor Advisory
- http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.htmlVendor Advisory
- http://www.securitytracker.com/id/1032121
- https://security.gentoo.org/glsa/201507-19
FAQ
What is CVE-2015-0423?
CVE-2015-0423 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Unspecified vulnerability in Oracle MySQL Server 5.6.22 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
How severe is CVE-2015-0423?
CVE-2015-0423 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0423?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Mysql, Oracle Communications Policy Management, Novell Suse Linux Enterprise Software Development Kit, Novell Suse Linux Enterprise Desktop, Novell Suse Linux Enterprise Server.