Vulnerabilities > Oracle > Mysql > 5.5.9

DATE CVE VULNERABILITY TITLE RISK
2016-12-13 CVE-2016-6663 Race Condition vulnerability in multiple products
Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17 allows local users with certain permissions to gain privileges by leveraging use of my_copystat by REPAIR TABLE to repair a MyISAM table.
4.4
2016-12-13 CVE-2016-7440 The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differences.
local
low complexity
mariadb oracle wolfssl debian
5.5
2016-10-25 CVE-2016-8290 Remote Security vulnerability in Oracle MySQL
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Performance Schema, a different vulnerability than CVE-2016-5633.
network
oracle
3.5
2016-10-25 CVE-2016-8289 Permissions, Privileges, and Access Controls vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows local users to affect integrity and availability via vectors related to Server: InnoDB.
local
oracle CWE-264
3.3
2016-10-25 CVE-2016-8287 Remote Security vulnerability in Oracle MySQL
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Replication.
network
oracle
3.5
2016-10-25 CVE-2016-8286 Information Exposure vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows remote authenticated users to affect confidentiality via vectors related to Server: Security: Privileges.
network
oracle CWE-200
3.5
2016-10-25 CVE-2016-8283 Remote Security vulnerability in Oracle MySQL
Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types.
network
low complexity
oracle mariadb
4.0
2016-10-25 CVE-2016-5635 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Security: Audit.
network
low complexity
oracle
4.0
2016-10-25 CVE-2016-5634 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to RBR.
network
low complexity
oracle
4.0
2016-10-25 CVE-2016-5633 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Performance Schema, a different vulnerability than CVE-2016-8290.
network
low complexity
oracle
4.0