Vulnerability Details : CVE-2013-5860
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS.
Products affected by CVE-2013-5860
- cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.9:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.10:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.11:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql:5.6.13:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-5860
0.25%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 62 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-5860
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:L/Au:S/C:N/I:N/A:C |
8.0
|
6.9
|
NIST |
References for CVE-2013-5860
-
http://www.securityfocus.com/bid/64864
Oracle MySQL Server CVE-2013-5860 Remote Security VulnerabilityThird Party Advisory;VDB Entry
-
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Oracle Critical Patch Update - January 2014Patch;Vendor Advisory
-
http://security.gentoo.org/glsa/glsa-201409-04.xml
MySQL: Multiple vulnerabilities (GLSA 201409-04) — Gentoo security
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/90373
Oracle MySQL Server GIS denial of service CVE-2013-5860 Vulnerability Report
-
http://www.securityfocus.com/bid/64758
RETIRED: Oracle January 2014 Critical Patch Update Multiple VulnerabilitiesThird Party Advisory;VDB Entry
Jump to