Oval Definition:	oval:com.ubuntu.trusty:def:20192632000
Revision Date: 2019-04-23 Version: 1 Title: CVE-2019-2632 on Ubuntu 14.04 LTS (trusty) - medium. Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Pluggable Auth). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Family: unix Class: vulnerability Status: Reference(s): CVE-2019-2632 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The vulnerability of the 'mariadb-5.5' package in trusty is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'mysql-5.5' package in trusty is not affected. OR NOT While related to the CVE in some way, the 'mysql-5.6' package in trusty is not affected. OR The vulnerability of the 'percona-xtradb-cluster-5.5' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.
BACK