Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2012-5615

Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.192
EPSS Ranking 95.0%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2012-5615
  • Mariadb » Mariadb » Version: 5.1.66
    cpe:2.3:a:mariadb:mariadb:5.1.66
  • Mariadb » Mariadb » Version: 5.2.13
    cpe:2.3:a:mariadb:mariadb:5.2.13
  • Mariadb » Mariadb » Version: 5.3.11
    cpe:2.3:a:mariadb:mariadb:5.3.11
  • Mariadb » Mariadb » Version: 5.5.28a
    cpe:2.3:a:mariadb:mariadb:5.5.28a
  • Oracle » Mysql » Version: 5.5.19
    cpe:2.3:a:oracle:mysql:5.5.19


Products
Pricing
Contact Us

Shodan ® - All rights reserved