Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle mysql 6.0.0 vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2009-4833
MySQL Connector/NET prior to 6.0.4, when using encryption, does not verify SSL certificates during connection, which allows remote malicious users to perform a man-in-the-middle attack with a spoofed SSL certificate.
Oracle Mysql Connector\\/net 6.0.1
Oracle Mysql Connector\\/net 6.0.0
Oracle Mysql Connector\\/net
Oracle Mysql Connector\\/net 6.0.2
516
VMScore
CVE-2007-5970
MySQL 5.1.x prior to 5.1.23 and 6.0.x prior to 6.0.4 allows remote authenticated users to gain privileges on arbitrary tables via unspecified vectors involving use of table-level DATA DIRECTORY and INDEX DIRECTORY options when creating a partitioned table with the same name as a ...
Oracle Mysql 5.1.1
Oracle Mysql 5.1.10
Oracle Mysql 5.1.17
Oracle Mysql 5.1.2
Oracle Mysql 5.1.13
Oracle Mysql 5.1.14
Oracle Mysql 6.0.2
Oracle Mysql 6.0.3
Oracle Mysql 6.0.4
Oracle Mysql 5.1.15
Oracle Mysql 5.1.16
Oracle Mysql 5.1.11
Oracle Mysql 5.1.12
Oracle Mysql 6.0.0
Oracle Mysql 6.0.1
312
VMScore
CVE-2007-6303
MySQL 5.0.x prior to 5.0.51a, 5.1.x prior to 5.1.23, and 6.0.x prior to 6.0.4 does not update the DEFINER value of a view when the view is altered, which allows remote authenticated users to gain privileges via a sequence of statements including a CREATE SQL SECURITY DEFINER VIEW...
Mysql Mysql 5.0.0
Mysql Mysql 5.0.24
Oracle Mysql 5.0.41
Oracle Mysql 5.1.10
Oracle Mysql 5.1.11
Oracle Mysql 5.1.2
Oracle Mysql 6.0.0
Mysql Mysql 5.0.22.1.0.1
Mysql Mysql 5.0.4
Oracle Mysql 5.1.1
Oracle Mysql 5.1.16
Oracle Mysql 5.1.17
Mysql Mysql 5.0.1
Mysql Mysql 5.0.15
Mysql Mysql 5.0.2
Mysql Mysql 5.0.20
Mysql Mysql 5.0.3
Mysql Mysql 5.0.5
Mysql Mysql 5.0.5.0.21
Oracle Mysql 5.1.12
Oracle Mysql 5.1.13
Oracle Mysql 6.0.1
405
VMScore
CVE-2009-0819
sql/item_xmlfunc.cc in MySQL 5.1 prior to 5.1.32 and 6.0 prior to 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a FilterExpr with ExtractValue() or UpdateXML()," which triggers an ...
Oracle Mysql 5.1.30
Mysql Mysql
Oracle Mysql 5.1.23
Mysql Mysql 5.1.23
Oracle Mysql 5.1.2
Oracle Mysql 5.1.16
Oracle Mysql 5.1.15
Oracle Mysql 6.0.4
Oracle Mysql 6.0.3
Oracle Mysql 5.1.14
Oracle Mysql 5.1.11
Oracle Mysql 5.1.1
Oracle Mysql 5.1.21
Oracle Mysql 5.1.29
Oracle Mysql 5.1.26
Oracle Mysql 5.1.18
Oracle Mysql 5.1.19
Oracle Mysql 5.1.24
Oracle Mysql 5.1.25
Mysql Mysql 6.0.9
Mysql Mysql 6.0.10-bzr
Oracle Mysql 6.0.0
1 EDB exploit
446
VMScore
CVE-2007-6304
The federated engine in MySQL 5.0.x prior to 5.0.51a, 5.1.x prior to 5.1.23, and 6.0.x prior to 6.0.4, when performing a certain SHOW TABLE STATUS query, allows remote MySQL servers to cause a denial of service (federated handler crash and daemon crash) via a response that lacks ...
Oracle Mysql 5.0.11
Mysql Mysql 5.0.17
Oracle Mysql 5.0.21
Oracle Mysql 5.0.22
Oracle Mysql 5.0.37
Oracle Mysql 5.0.7
Oracle Mysql 5.0.8
Oracle Mysql 5.1.15
Oracle Mysql 5.1.16
Mysql Mysql 5.0.1
Mysql Mysql 5.0.10
Mysql Mysql 5.0.16
Mysql Mysql 5.0.20
Oracle Mysql 5.0.3
Oracle Mysql 5.0.33
Mysql Mysql 5.0.5.0.21
Oracle Mysql 5.0.6
Oracle Mysql 5.1.13
Oracle Mysql 5.1.14
Oracle Mysql 6.0.2
Oracle Mysql 6.0.3
Oracle Mysql 5.0.0
405
VMScore
CVE-2008-3963
MySQL 5.0 prior to 5.0.66, 5.1 prior to 5.1.26, and 6.0 prior to 6.0.6 does not properly handle a b'' (b single-quote single-quote) token, aka an empty bit-string literal, which allows remote malicious users to cause a denial of service (daemon crash) by using this toke...
Mysql Mysql 5.0.0
Mysql Mysql 5.0.15
Mysql Mysql 5.0.2
Oracle Mysql 5.0.23
Oracle Mysql 5.0.25
Oracle Mysql 5.0.26
Oracle Mysql 5.0.33
Oracle Mysql 5.0.42
Oracle Mysql 5.0.38
Mysql Mysql 5.0.54
Oracle Mysql 5.0.52
Oracle Mysql 5.1.3
Oracle Mysql 5.1.4
Oracle Mysql 5.1.12
Oracle Mysql 5.1.17
Oracle Mysql 5.1.21
Oracle Mysql 5.1.22
Oracle Mysql 6.0.2
Oracle Mysql 6.0.1
Oracle Mysql 5.0.0
Mysql Mysql 5.0.10
Mysql Mysql 5.0.22.1.0.1
1 EDB exploit
536
VMScore
CVE-2008-7247
sql/sql_table.cc in MySQL 5.0.x up to and including 5.0.88, 5.1.x up to and including 5.1.41, and 6.0 prior to 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticated users to bypass intended access restrictions by calli...
Mysql Mysql 5.0.20
Mysql Mysql 5.0.2
Mysql Mysql 5.0.16
Oracle Mysql 5.0.0
Oracle Mysql 5.0.11
Mysql Mysql 5.0.1
Oracle Mysql 5.0.42
Mysql Mysql 5.0.56
Oracle Mysql 5.0.51
Mysql Mysql 5.0.5.0.21
Oracle Mysql 5.0.33
Mysql Mysql 5.0.4
Oracle Mysql 5.0.7
Oracle Mysql 5.0.75
Mysql Mysql 5.1.5
Oracle Mysql 5.1.6
Oracle Mysql 5.1.14
Oracle Mysql 5.1.11
Oracle Mysql 5.1
Oracle Mysql 5.1.10
Oracle Mysql 5.1.19
Oracle Mysql 5.1.20
668
VMScore
CVE-2021-3711
In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" paramete...
Openssl Openssl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Storage Encryption -
Netapp E-series Santricity Os Controller
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Jd Edwards World Security A9.4
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Session Border Controller 8.4
Oracle Enterprise Communications Broker 3.2.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Peoplesoft Enterprise Peopletools 8.59
1 Github repository
1 Article
517
VMScore
CVE-2021-3712
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Santricity Smi-s Provider -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Manageability Software Development Kit -
Netapp Storage Encryption -
Netapp E-series Santricity Os Controller
Mcafee Epolicy Orchestrator 5.10.0
Mcafee Epolicy Orchestrator
Tenable Tenable.sc
Tenable Nessus Network Monitor
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Zfs Storage Appliance Kit 8.8
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Server
Oracle Mysql Workbench
2 Github repositories
540
VMScore
CVE-2021-4104
JMSAppender in Log4j 1.2 is vulnerable to deserialization of untrusted data when the attacker has write access to the Log4j configuration. The attacker can provide TopicBindingName and TopicConnectionFactoryBindingName configurations causing JMSAppender to perform JNDI requests t...
Apache Log4j 1.2
Fedoraproject Fedora 35
Redhat Jboss Operations Network 3.0
Redhat Jboss A-mq 6.0.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Jboss Enterprise Application Platform 6.0.0
Redhat Jboss Enterprise Application Platform 7.0
Redhat Jboss Fuse 6.0.0
Redhat Jboss Fuse Service Works 6.0
Redhat Jboss Web Server 3.0
Redhat Jboss Data Virtualization 6.0.0
Redhat Enterprise Linux 8.0
Redhat Single Sign-on 7.0
Redhat Software Collections -
Redhat Jboss Fuse 7.0.0
Redhat Process Automation 7.0
Redhat Jboss Data Grid 7.0.0
Redhat Openshift Application Runtimes -
Redhat Codeready Studio 12.0
Redhat Integration Camel K -
Redhat Openshift Container Platform 4.6
21 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started