CVE-2015-2575 : Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.

Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.

Published 2015-04-16 17:00:07

Updated 2025-04-12 10:46:41

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2015-2575

Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Desktop » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Server » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Server » Version: 11 Update SP3 Vmware Edition
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:vmware:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Software Development Kit » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*
Matching versions
Mysql » Mysql
Versions up to, including, (<=) 5.1.34
cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2015-2575

Top countries where our scanners detected CVE-2015-2575

Top open port discovered on systems with this issue 3306

IPs affected by CVE-2015-2575 44,470

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2015-2575!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2015-2575

EPSS FAQ

0.64%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 68 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-2575

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.9	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:N	6.8	4.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None

References for CVE-2015-2575

https://security.netapp.com/advisory/ntap-20150417-0003/

CVE-2015-2575 MySQL Connector/J Vulnerability in Multiple NetApp Products | NetApp Product Security
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html

[security-announce] SUSE-SU-2015:0946-1: important: Security update for
Third Party Advisory

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Oracle Critical Patch Update - April 2015
Vendor Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/74075

Oracle MySQL Connectors CVE-2015-2575 Remote Security Vulnerability
Third Party Advisory;VDB Entry
http://www.debian.org/security/2016/dsa-3621

Debian -- Security Information -- DSA-3621-1 mysql-connector-java
Third Party Advisory
http://www.securitytracker.com/id/1032121

MySQL Multiple Bugs Let Remote Users Deny Service, Remote Authenticated Users Partially Access and Modify Data, and Local Users Partially Modify Data on the Target System - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-05/msg00089.html

Object not found!
Broken Link

Jump to

Vulnerability Details : CVE-2015-2575

Products affected by CVE-2015-2575

Threat overview for CVE-2015-2575

Exploit prediction scoring system (EPSS) score for CVE-2015-2575

CVSS scores for CVE-2015-2575

References for CVE-2015-2575