Vulnerability Details : CVE-2013-0383

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote attackers to affect availability via unknown vectors related to Server Locking.

Published 2013-01-17 01:55:05

Updated 2022-08-29 20:49:25

Source Oracle

View at NVD, CVE.org

Threat overview for CVE-2013-0383

Top countries where our scanners detected CVE-2013-0383

Top open port discovered on systems with this issue 3306

IPs affected by CVE-2013-0383 36,090

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2013-0383!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2013-0383

Probability of exploitation activity in the next 30 days: 1.00%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 82 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2013-0383

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	nvd@nist.gov
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2013-0383

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16758

Repository / Oval Repository
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-0219.html

RHSA-2013:0219 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

mandriva.com
Broken Link

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html

Oracle Critical Patch Update - January 2013
Vendor Advisory

CVEs referencing this url
http://www.ubuntu.com/usn/USN-1703-1

USN-1703-1: MySQL vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
http://security.gentoo.org/glsa/glsa-201308-06.xml

MySQL: Multiple vulnerabilities (GLSA 201308-06) — Gentoo security
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2013-0383

Redhat » Enterprise Linux » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Eus » Version: 6.3
cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Workstation » Version: 6.0
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql
Versions from including (>=) 5.1.0 and up to, including, (<=) 5.1.66
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
Matching versions
Oracle » Mysql
Versions from including (>=) 5.5.0 and up to, including, (<=) 5.5.28
cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.04
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.10
cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 10.04
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 11.04
cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.3.0 and before (<) 5.3.12
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.1.0 and before (<) 5.1.67
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.5.0 and before (<) 5.5.29
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb
Versions from including (>=) 5.2.0 and before (<) 5.2.14
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Matching versions
Mariadb » Mariadb » Version: 10.0.0
cpe:2.3:a:mariadb:mariadb:10.0.0:*:*:*:*:*:*:*
Matching versions