Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MySQL Comunity Edition Number Of NVD 1286 CRITICAL 7 HIGH 76 MEDIUM 1021 LOW 173
URL https://www.mysql.com/jp/products/community/
Explanation It is an open source, free relational database management system (RDBMS) that is used around the world.
Its performance and functionality are sufficient for commercial use, and it is used for more than just the backend of web applications.
With the merger of Sun Microsystems into Oracle, it was feared that it might no longer be available for free commercial use, but it is still available under the GPL license for cloud backend and internal use.
It is still used as a backend for many web applications (WordPress, Facebook, etc.).

Since it has been merged with Oracle, the development speed has been increased, and the latest version is a higher performance, higher functionality relational database management system (RDBMS).

You can also get technical support by paying a support fee.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • GPL v2
  • オープンソース
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://dev.mysql.com/downloads/mysql/
2 https://endoflife.software/applications/databases/mysql
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1251 MySQL 8.1 8.1.0 July 18, 2023 July 18, 2023 0 0 0 0
1252 New!! MySQL 8 8.0.45 Jan. 20, 2029 April 19, 2018 April 19, 2026 4 25 565 54
1253 MySQL 5.7 5.7.44 Oct. 25, 2023 Jan. 21, 2015 Oct. 21, 2023 6 26 356 33
1254 MySQL 5.6 5.6.51 Jan. 20, 2021 Feb. 5, 2013 Feb. 5, 2021 5 28 359 90
1255 MySQL 5.5 5.5.62 Oct. 22, 2018 Oct. 3, 2010 Jan. 3, 2018 3 26 347 92
1256 MySQL 7.6 7.6.9 Jan. 1, 2000 0 2 40 16
1257 MySQL 7.5 7.5.9 Jan. 1, 2000 0 2 39 15
1258 MySQL 7.4 7.4.9 Jan. 1, 2000 0 2 38 14
1259 MySQL 7.3 7.3.9 Jan. 1, 2000 0 2 13 0
1260 MySQL 7.2 7.2.35 Jan. 1, 2000 0 0 12 0
1261 MySQL 7.1 7.1.37 Jan. 1, 2000 0 0 12 0
1262 MySQL 6.0 6.0.5 Jan. 1, 2000 0 0 18 1
1263 MySQL 5.4 5.4.3 Jan. 1, 2000 0 3 132 41
1264 MySQL 5.3 5.3.9 Jan. 1, 2000 0 3 133 41
1265 MySQL 5.1 5.1.9 Dec. 31, 2013 0 10 221 60
1266 MySQL 5.0 5.0.96 Jan. 9, 2012 0 8 168 54
1267 MySQL 4.1 4.1.9 Jan. 1, 2000 0 5 136 47
1268 MySQL 4.0 4.0.9 Jan. 1, 2000 0 11 139 48
1269 MySQL 3.2 3.20.32a Jan. 1, 2000 0 10 128 45
1270 MySQL 1.5 1.5.1 Jan. 1, 2000 0 6 127 44
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1251 -
4.6 		MEDIUM MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to bypass library path restrictions and execute arbitrary libraries by using INSE… NVD-CWE-Other
CVE-2005-0710 cpe:2.3:a:oracle:mysql:4.1.5:*
cpe:2.3:a:oracle:mysql:4.1.4:*
cpe:2.3:a:oracle:mysql:4.1.3:beta
cpe:2.3:a:orac… 		2019-12-18 02:12
2005-05-2 		Show GitHub Exploit DB Packet Storm
1252 -
2.1 		LOW MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable file names when creating temporary tables, which allows local users with CREATE TEMPORARY TABLE privileges to overwrite arbitrary fi… NVD-CWE-Other
CVE-2005-0711 cpe:2.3:a:oracle:mysql:4.1.5:*
cpe:2.3:a:oracle:mysql:4.1.4:*
cpe:2.3:a:oracle:mysql:4.1.3:beta
cpe:2.3:a:orac… 		2019-12-18 02:12
2005-05-2 		Show GitHub Exploit DB Packet Storm
1253 -
4.6 		MEDIUM The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files … CWE-59
Link Following 		CVE-2005-0004 cpe:2.3:a:oracle:mysql:*:* 5.0.0
4.0.0
4.1.0



5.0.3
4.0.23
4.1.10 		2022-08-5 23:26
2005-04-14 		Show GitHub Exploit DB Packet Storm
1254 -
5.0 		MEDIUM MySQL 4.1.9, and possibly earlier versions, allows remote attackers with certain privileges to cause a denial of service (application crash) via a use command followed by an MS-DOS device name such a… NVD-CWE-Other
CVE-2005-0799 cpe:2.3:a:oracle:mysql:4.1.9:* 2019-12-18 02:12
2005-03-15 		Show GitHub Exploit DB Packet Storm
1255 -
6.8 		MEDIUM Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user has privileges for a database whose name includes a "_" (underscore), grants privileges to other databases that have similar name… NVD-CWE-noinfo
CVE-2004-0957 cpe:2.3:a:oracle:mysql:4.0.9:gamma
cpe:2.3:a:oracle:mysql:4.0.9:*
cpe:2.3:a:oracle:mysql:4.0.8:gamma
cpe:2.3:a… 		2019-12-18 02:11
2005-02-9 		Show GitHub Exploit DB Packet Storm
1256 -
5.0 		MEDIUM MySQL before 4.0.20 allows remote attackers to cause a denial of service (application crash) via a MATCH AGAINST query with an opening double quote but no closing double quote. NVD-CWE-Other
CVE-2004-0956 cpe:2.3:a:oracle:mysql:4.0.9:gamma
cpe:2.3:a:oracle:mysql:4.0.9:*
cpe:2.3:a:oracle:mysql:4.0.8:gamma
cpe:2.3:a… 		2019-12-18 02:11
2005-01-10 		Show GitHub Exploit DB Packet Storm
1257 -
5.0 		MEDIUM Buffer overflow in the prepared statements API in libmysqlclient for MySQL 4.1.3 beta and 4.1.4 allows remote attackers to cause a denial of service via a large number of placeholders. NVD-CWE-Other
CVE-2004-2149 cpe:2.3:a:oracle:mysql:4.1.4:*
cpe:2.3:a:oracle:mysql:4.1.3:beta 		2019-12-18 02:12
2004-12-31 		Show GitHub Exploit DB Packet Storm
1258 -
7.5 		HIGH MySQL 3.x before 3.23.59, 4.x before 4.0.19, 4.1.x before 4.1.2, and 5.x before 5.0.1, checks the CREATE/INSERT rights of the original table instead of the target table in an ALTER TABLE RENAME opera… NVD-CWE-Other
CVE-2004-0835 cpe:2.3:a:oracle:mysql:*:*
4.0.0
3.20
 3.23.59
4.0.19 		2019-10-8 01:42
2004-11-3 		Show GitHub Exploit DB Packet Storm
1259 -
10.0 		HIGH Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2004-0836 cpe:2.3:a:oracle:mysql:*:* 3.20
4.0.0

3.23.49
4.0.21 		2019-12-18 02:11
2004-11-3 		Show GitHub Exploit DB Packet Storm
1260 -
2.6 		LOW MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows attackers to cause a denial of service (crash or hang) via multiple threads that simultaneously alter MERGE table UNIONs. NVD-CWE-Other
CVE-2004-0837 cpe:2.3:a:oracle:mysql:*:* 3.20
4.0.0

3.23.49
4.0.21 		2023-11-7 10:56
2004-11-3 		Show GitHub Exploit DB Packet Storm