Mysql

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:mysql:mysql:6.0.9:*:*:*:*:*:*:*

part: a version: 6.0.9 update: *

VendorMysql (ed5ca9e5-b35c-577b-a574-83118837ee82)
ProductMysql (1c8532fc-b850-5724-9963-04be22800b3e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/mysql-8.0 purl2cpe 2026-06-01 10:17:11.980319
pkg:deb/ubuntu/mysql-8.0 purl2cpe 2026-06-01 10:17:11.980321
pkg:docker/mysql purl2cpe 2026-06-01 10:17:11.980323
pkg:github/mysql/mysql-server purl2cpe 2026-06-01 10:17:11.980325
pkg:rpm/centos/mysql-8.0 purl2cpe 2026-06-01 10:17:11.980327

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2009-0819 vulnerable 2026-06-08 04:51:11.511410 Details available
sql/item_xmlfunc.cc in MySQL 5.1 before 5.1.32 and 6.0 before 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a FilterExpr with ExtractValue() or UpdateXML()," which triggers an assertion failure.
Published: 2009-03-05T02:00:00.000Z
Updated: 2024-08-07T04:48:52.280Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2008-7247 vulnerable 2026-06-08 04:51:06.178193 Details available
sql/sql_table.cc in MySQL 5.0.x through 5.0.88, 5.1.x through 5.1.41, and 6.0 before 6.0.9-alpha, when the data home directory contains a symlink to a different filesystem, allows remote authenticated users to bypass intended access restrictions by calling CREATE TABLE with a (1) DATA DIRECTORY or (2) INDEX DIRECTORY argument referring to a subdirectory that requires following this symlink.
Published: 2009-11-30T17:00:00.000Z
Updated: 2024-08-07T11:56:14.541Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.