CVE-2012-1697

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:N/I:N/A:P

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/48890	Not Applicable
http://secunia.com/advisories/49179	Not Applicable
http://secunia.com/advisories/53372	Not Applicable
http://security.gentoo.org/glsa/glsa-201308-06.xml	Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150	Broken Link
http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html	Vendor Advisory
http://www.securityfocus.com/bid/53064	Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1026934	Broken Link Third Party Advisory VDB Entry
http://secunia.com/advisories/48890	Not Applicable
http://secunia.com/advisories/49179	Not Applicable
http://secunia.com/advisories/53372	Not Applicable
http://security.gentoo.org/glsa/glsa-201308-06.xml	Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150	Broken Link
http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html	Vendor Advisory
http://www.securityfocus.com/bid/53064	Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1026934	Broken Link Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2012-05-03 22:55

Updated : 2025-04-11 00:51

NVD link : CVE-2012-1697

Mitre link : CVE-2012-1697

CVE.ORG link : CVE-2012-1697

JSON object : View

Products Affected

mariadb

mariadb

oracle

mysql

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-1697", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-05-03T22:55:02.670", "references": [{"url": "http://secunia.com/advisories/48890", "tags": ["Not Applicable"], "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/49179", "tags": ["Not Applicable"], "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/53372", "tags": ["Not Applicable"], "source": "secalert_us@oracle.com"}, {"url": "http://security.gentoo.org/glsa/glsa-201308-06.xml", "tags": ["Third Party Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "tags": ["Broken Link"], "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/53064", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id?1026934", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/48890", "tags": ["Not Applicable"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/49179", "tags": ["Not Applicable"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/53372", "tags": ["Not Applicable"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-201308-06.xml", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "tags": ["Broken Link"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/53064", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1026934", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente de servidor MySQL en Oracle MySQL v5.5.21 y anteriores permite a usuarios remotos autenticados afectar a la disponibilidad a trav\u00e9s de vectores desconocidos relacionados con la partici\u00f3n."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADFF26FD-261F-423A-B2B8-FAB6F9BEADCD", "versionEndIncluding": "5.5.21", "versionStartIncluding": "5.5.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E218187-5A47-4AFE-AF7F-FCE5A22E380F", "versionEndExcluding": "5.5.22", "versionStartIncluding": "5.5.0"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}