VYPR
Unrated severityNVD Advisory· Published Jun 8, 2010· Updated Jun 16, 2026

CVE-2010-1848

CVE-2010-1848

Description

Directory traversal vulnerability in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to bypass intended table grants to read field definitions of arbitrary tables, and on 5.1 to read or delete content of arbitrary tables, via a .. (dot dot) in a table name.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

86
  • MySQL/MySQL24 versions
    cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*+ 23 more
    • cpe:2.3:a:mysql:mysql:5.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.16:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.17:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.20:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.24:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.45b:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.5.0.21:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.82:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.84:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.0.87:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.23:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.31:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.32:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.34:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.37:*:*:*:*:*:*:*
    • cpe:2.3:a:mysql:mysql:5.1.5:*:*:*:*:*:*:*
    • (no CPE)range: 5.0 through 5.0.91 and 5.1 before 5.1.47
  • cpe:2.3:a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*+ 61 more
    • cpe:2.3:a:oracle:mysql:5.0.0:alpha:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.18:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.19:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.21:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.22:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.23:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.27:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.33:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.37:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.3:beta:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.41:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.45:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.51:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.67:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.75:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.77:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.81:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.83:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.85:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.86:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.88:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.89:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.90:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.0.91:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.10:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.11:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.12:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.13:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.14:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.15:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.16:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.17:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.30:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.33:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.35:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.36:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.38:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.39:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.40:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.41:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.42:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.43:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.44:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.45:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.46:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:mysql:5.1.9:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.