CVE-2013-2391 - Vulnerability Details

Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 and earlier allows local users to affect confidentiality and integrity via unknown vectors related to Server Install.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mariadb	Mariadb
Oracle	Mysql
Redhat	Enterprise Linux Enterprise Linux Desktop Enterprise Linux Eus Enterprise Linux Server Enterprise Linux Server Aus Enterprise Linux Workstation

Configuration 1 [-]

OR	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql::::::::
	cpe:2.3:a:oracle:mysql::::::::

Configuration 2 [-]

OR	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:6.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*

Configuration 3 [-]

OR	cpe:2.3:a:mariadb:mariadb::::::::
	cpe:2.3:a:mariadb:mariadb::::::::

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 6
mysql-0:5.1.69-1.el6_4	cpe:/o:redhat:enterprise_linux:6	RHSA-2013:0772	2013-04-25T00:00:00Z

References

Link	Providers
http://rhn.redhat.com/errata/RHSA-2013-0772.html
http://secunia.com/advisories/53372
http://security.gentoo.org/glsa/glsa-201308-06.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html#AppendixMSQL
https://nvd.nist.gov/vuln/detail/CVE-2013-2391
https://www.cve.org/CVERecord?id=CVE-2013-2391

History

No history.

MITRE

Status: PUBLISHED

Assigner: oracle

Published: 2013-04-17T14:00:00.000Z

Updated: 2024-08-06T15:36:46.443Z

Reserved: 2013-03-05T00:00:00.000Z

Link: CVE-2013-2391

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2013-04-17T17:55:06.577

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-2391

Redhat

Severity : Low

Publid Date: 2013-04-16T00:00:00Z

Links: CVE-2013-2391 - Bugzilla

Metrics

Access Vector Local

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object