mariadb

423 tracked vulnerabilities.

CVE-2022-27447 HIGH
MariaDB < 10.3.35 - Use-After-Free in Binary_string::free_buffer()
Apr 14, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27446 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27445 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27444 HIGH
MariaDB Server <10.9 - Memory Corruption
Apr 14, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-27387 HIGH
MariaDB 10.2.0-10.2.43 - Buffer Overflow via Specially Crafted SQL Statements
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27386 HIGH
MariaDB 10.2.0-10.2.43 - Denial of Service via sql/sql_class.cc
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27385 HIGH
MariaDB < 10.3.32 - Denial of Service via Used_tables_and_const_cache_join
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27384 HIGH
MariaDB < 10.2.44 - Denial of Service via Item_subselect::init_expr_cache_tracker
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27383 HIGH
MariaDB 10.2.0-10.2.43 - Use-After-Free via my_strcasecmp_8bit
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27382 HIGH
MariaDB 10.4.0-10.4.25 - Denial of Service via Item_field::used_tables/update_depend_map_for_order
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27381 HIGH
MariaDB < 10.2.44 - Denial of Service via Field::set_default
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27380 HIGH
MariaDB 10.2.0-10.2.43 - Denial of Service via my_decimal::operator=
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27379 HIGH
MariaDB 10.3.0-10.3.34 - Denial of Service via Arg_comparator::compare_real_fixed
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27378 HIGH
MariaDB < 10.2.44 - Denial of Service via Create_tmp_table::finalize
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27377 HIGH
MariaDB < 10.2.44 - Use-After-Free via Item_func_in::cleanup()
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-27376 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in Item_args::walk_arg
Apr 12, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-0778 HIGH
OpenSSL 1.0.2-1.0.2zc, 1.1.1-1.1.1m, 3.0.0-3.0.1 - Denial of Service via BN_mod_sqrt Infinite Loop
Mar 15, 2022
CVSS 7.5
EPSS 0.71
CVE-2022-24052 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24051 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24050 HIGH
MariaDB CONNECT Storage Engine - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-24048 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-46669 HIGH
MariaDB < 10.2.44 - Use-After-Free via BIGINT Data Type Handling
Feb 01, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-46668 MEDIUM
MariaDB 10.2.0-10.2.42 - Denial of Service via Long SELECT DISTINCT Statements
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46667 MEDIUM
MariaDB < 10.2.41 - Denial of Service via Integer Overflow in sql_lex.cc
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46666 MEDIUM
MariaDB < 10.2.39 - Reachable Assertion via HAVING Clause Pushdown
Feb 01, 2022
CVSS 5.5
EPSS 0.00