CVE-2012-2750

critical

Published 2012-08-17 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown impact and attack vectors related to a "Security Fix", aka Bug #59533. NOTE: this might be a duplicate of CVE-2012-1689, but as of 20120816, Oracle has not commented on this possibility.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact

OS	Version	Status	Fixed in
debian	6.0	affected

Application impact

Vendor	Product	Versions	Fixed
oracle	mysql	`{"startIncluding":"5.5.0","endExcluding":"5.5.23"}`	`5.5.23`
mariadb	mariadb	`{"startIncluding":"5.5.0","endIncluding":"5.5.23"}`

References

http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.html
http://www.debian.org/security/2013/dsa-2780
http://www.mandriva.com/security/advisories?name=MDVSA-2013:250
http://www.securityfocus.com/bid/63125
http://www.securitytracker.com/id/1029184
https://bugzilla.redhat.com/show_bug.cgi?id=833742
http://dev.mysql.com/doc/refman/5.5/en/news-5-5-23.html
http://www.debian.org/security/2013/dsa-2780
http://www.mandriva.com/security/advisories?name=MDVSA-2013:250
http://www.securityfocus.com/bid/63125
http://www.securitytracker.com/id/1029184
https://bugzilla.redhat.com/show_bug.cgi?id=833742

Verify integrity in audit chain (admin only). AS-IS.