Search for vulnerabilities
Vulnerability details: VCID-zwr9-apn3-aaan
Vulnerability ID VCID-zwr9-apn3-aaan
Aliases CVE-2015-2575
GHSA-gc43-g62c-99g2
Summary Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-284 Improper Access Control
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
generic_textual MODERATE http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html
generic_textual MODERATE http://lists.opensuse.org/opensuse-updates/2015-05/msg00089.html
epss 0.00164 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00164 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00164 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00164 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00187 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00189 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00631 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.00639 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
epss 0.0166 https://api.first.org/data/v1/epss?cve=CVE-2015-2575
rhbs medium https://bugzilla.redhat.com/show_bug.cgi?id=1212764
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-gc43-g62c-99g2
cvssv2 4.9 https://nvd.nist.gov/vuln/detail/CVE-2015-2575
generic_textual MODERATE https://security.netapp.com/advisory/ntap-20150417-0003
generic_textual MODERATE http://www.debian.org/security/2016/dsa-3621
generic_textual MODERATE http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.html
http://lists.opensuse.org/opensuse-updates/2015-05/msg00089.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2575.json
https://api.first.org/data/v1/epss?cve=CVE-2015-2575
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2575
https://security.netapp.com/advisory/ntap-20150417-0003
https://security.netapp.com/advisory/ntap-20150417-0003/
http://www.debian.org/security/2016/dsa-3621
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
http://www.securityfocus.com/bid/74075
http://www.securitytracker.com/id/1032121
1212764 https://bugzilla.redhat.com/show_bug.cgi?id=1212764
cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mysql:mysql:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp3:vmware:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_server:11:sp3:vmware:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*
CVE-2015-2575 https://nvd.nist.gov/vuln/detail/CVE-2015-2575
GHSA-gc43-g62c-99g2 https://github.com/advisories/GHSA-gc43-g62c-99g2
No exploits are available.
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2015-2575
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.53455
EPSS Score 0.00164
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.