The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3518 advisory.
– mysql: Information Schema unspecified vulnerability (CPU Oct 2019) (CVE-2019-2911)
– mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2019) (CVE-2019-2914, CVE-2019-2957)
– mysql: InnoDB unspecified vulnerability (CPU Oct 2019) (CVE-2019-2938, CVE-2019-2963, CVE-2019-2968, CVE-2019-3018)
– mysql: Server: PS unspecified vulnerability (CPU Oct 2019) (CVE-2019-2946)
– mysql: Server: Replication unspecified vulnerability (CPU Oct 2019) (CVE-2019-2960)
– mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2019) (CVE-2019-2966, CVE-2019-2967, CVE-2019-2974, CVE-2019-2982, CVE-2019-2991, CVE-2019-2998)
– mysql: Server: C API unspecified vulnerability (CPU Oct 2019) (CVE-2019-2993, CVE-2019-3011)
– mysql: Server: DDL unspecified vulnerability (CPU Oct 2019) (CVE-2019-2997)
– mysql: Server: Parser unspecified vulnerability (CPU Oct 2019) (CVE-2019-3004)
– mysql: Server: Connection unspecified vulnerability (CPU Oct 2019) (CVE-2019-3009)
– mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2020) (CVE-2020-14539, CVE-2020-14547, CVE-2020-14597, CVE-2020-14614, CVE-2020-14654, CVE-2020-14680, CVE-2020-14725)
– mysql: Server: DML unspecified vulnerability (CPU Jul 2020) (CVE-2020-14540, CVE-2020-14575, CVE-2020-14620)
– mysql: C API unspecified vulnerability (CPU Jul 2020) (CVE-2020-14550)
– mysql: Server: Pluggable Auth unspecified vulnerability (CPU Jul 2020) (CVE-2020-14553)
– mysql: Server: Information Schema unspecified vulnerability (CPU Jul 2020) (CVE-2020-14559)
– mysql: Server: Replication unspecified vulnerability (CPU Jul 2020) (CVE-2020-14567)
– mysql: InnoDB unspecified vulnerability (CPU Jul 2020) (CVE-2020-14568, CVE-2020-14623, CVE-2020-14633, CVE-2020-14634)
– mysql: Server: UDF unspecified vulnerability (CPU Jul 2020) (CVE-2020-14576)
– mysql: Server: Security: Privileges unspecified vulnerability (CPU Jul 2020) (CVE-2020-14586, CVE-2020-14663, CVE-2020-14678, CVE-2020-14697, CVE-2020-14702)
– mysql: Server: Parser unspecified vulnerability (CPU Jul 2020) (CVE-2020-14619)
– mysql: Server: JSON unspecified vulnerability (CPU Jul 2020) (CVE-2020-14624)
– mysql: Server: Security: Audit unspecified vulnerability (CPU Jul 2020) (CVE-2020-14631)
– mysql: Server: Options unspecified vulnerability (CPU Jul 2020) (CVE-2020-14632)
– mysql: Server: Security: Roles unspecified vulnerability (CPU Jul 2020) (CVE-2020-14641, CVE-2020-14643, CVE-2020-14651)
– mysql: Server: Locking unspecified vulnerability (CPU Jul 2020) (CVE-2020-14656)
– mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2020) (CVE-2020-14799)
– mysql: C API unspecified vulnerability (CPU Jan 2020) (CVE-2020-2570, CVE-2020-2573, CVE-2020-2574)
– mysql: InnoDB unspecified vulnerability (CPU Jan 2020) (CVE-2020-2577, CVE-2020-2589)
– mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2020) (CVE-2020-2579, CVE-2020-2660, CVE-2020-2679, CVE-2020-2686)
– mysql: Server: DDL unspecified vulnerability (CPU Jan 2020) (CVE-2020-2580)
– mysql: Server: Options unspecified vulnerability (CPU Jan 2020) (CVE-2020-2584)
– mysql: Server: DML unspecified vulnerability (CPU Jan 2020) (CVE-2020-2588)
– mysql: Server: Parser unspecified vulnerability (CPU Jan 2020) (CVE-2020-2627)
– mysql: Server: Information Schema unspecified vulnerability (CPU Jan 2020) (CVE-2020-2694)
– mysql: C API unspecified vulnerability (CPU Apr 2020) (CVE-2020-2752, CVE-2020-2922)
– mysql: Server: Replication unspecified vulnerability (CPU Apr 2020) (CVE-2020-2759, CVE-2020-2763)
– mysql: InnoDB unspecified vulnerability (CPU Apr 2020) (CVE-2020-2760, CVE-2020-2762, CVE-2020-2814, CVE-2020-2893, CVE-2020-2895)
– mysql: Server: Security: Privileges unspecified vulnerability (CPU Apr 2020) (CVE-2020-2761, CVE-2020-2774, CVE-2020-2779, CVE-2020-2853)
– mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2020) (CVE-2020-2765, CVE-2020-2892, CVE-2020-2897, CVE-2020-2901, CVE-2020-2904, CVE-2020-2923, CVE-2020-2924, CVE-2020-2928)
– mysql: Server: Logging unspecified vulnerability (CPU Apr 2020) (CVE-2020-2770)
– mysql: Server: DML unspecified vulnerability (CPU Apr 2020) (CVE-2020-2780)
– mysql: Server: Memcached unspecified vulnerability (CPU Apr 2020) (CVE-2020-2804)
– mysql: Server: Stored Procedure unspecified vulnerability (CPU Apr 2020) (CVE-2020-2812)
– mysql: Server: Information Schema unspecified vulnerability (CPU Apr 2020) (CVE-2020-2896)
– mysql: Server: Charsets unspecified vulnerability (CPU Apr 2020) (CVE-2020-2898)
– mysql: Server: Connection Handling unspecified vulnerability (CPU Apr 2020) (CVE-2020-2903)
– mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2020) (CVE-2020-2921)
– mysql: Server: PS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2925)
– mysql: Server: Group Replication GCS unspecified vulnerability (CPU Apr 2020) (CVE-2020-2926)
– mysql: Server: Parser unspecified vulnerability (CPU Apr 2020) (CVE-2020-2930)
– mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021) (CVE-2021-1998, CVE-2021-2016, CVE-2021-2020)
– mysql: C API unspecified vulnerability (CPU Jan 2021) (CVE-2021-2006, CVE-2021-2007)
– mysql: Server: Security: Roles unspecified vulnerability (CPU Jan 2021) (CVE-2021-2009)
– mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2021) (CVE-2021-2012, CVE-2021-2019)
– mysql: Server: Parser unspecified vulnerability (CPU Apr 2021) (CVE-2021-2144)
– mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2021) (CVE-2021-2160)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More
References
Back to Main
