CVE-2012-5615
CVSS v2.0
5 (Medium)
EPSS
6.20 % (94th)
Affected Products
2
Advisories
11
Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.
Weaknesses
- CWE-200
- Exposure of Sensitive Information to an Unauthorized Actor
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2012-12-03 12:49:43
(11 years ago) - Updated Date
-
2023-02-13 04:37:39
(19 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...