mariadb

414 tracked vulnerabilities.

CVE-2022-27382 HIGH
MariaDB 10.4.0-10.4.25 - Denial of Service via Item_field::used_tables/update_depend_map_for_order
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27381 HIGH
MariaDB < 10.2.44 - Denial of Service via Field::set_default
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27380 HIGH
MariaDB 10.2.0-10.2.43 - Denial of Service via my_decimal::operator=
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27379 HIGH
MariaDB 10.3.0-10.3.34 - Denial of Service via Arg_comparator::compare_real_fixed
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27378 HIGH
MariaDB < 10.2.44 - Denial of Service via Create_tmp_table::finalize
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27377 HIGH
MariaDB < 10.2.44 - Use-After-Free via Item_func_in::cleanup()
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-27376 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in Item_args::walk_arg
Apr 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-0778 HIGH
OpenSSL 1.0.2-1.0.2zc, 1.1.1-1.1.1m, 3.0.0-3.0.1 - Denial of Service via BN_mod_sqrt Infinite Loop
Mar 15, 2022
CVSS 7.5
EPSS 0.07
CVE-2022-24052 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-24051 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-24050 HIGH
MariaDB CONNECT Storage Engine - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-24048 HIGH
MariaDB CONNECT - Privilege Escalation
Feb 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-46669 HIGH
MariaDB < 10.2.44 - Use-After-Free via BIGINT Data Type Handling
Feb 01, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-46668 MEDIUM
MariaDB 10.2.0-10.2.42 - Denial of Service via Long SELECT DISTINCT Statements
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46667 MEDIUM
MariaDB < 10.2.41 - Denial of Service via Integer Overflow in sql_lex.cc
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46666 MEDIUM
MariaDB < 10.2.39 - Reachable Assertion via HAVING Clause Pushdown
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46665 MEDIUM
MariaDB 10.2.0-10.2.42 - Denial of Service via sql_parse.cc Used Tables Mismatch
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46664 MEDIUM
MariaDB 10.2.0-10.2.42 - Denial of Service via NULL Value in sub_select_postjoin_aggr
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46663 MEDIUM
MariaDB 10.2.41-10.2.42 - Denial of Service via SELECT Statement
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46662 MEDIUM
MariaDB 10.3.0-10.3.31 - Denial of Service via UPDATE Statement with Nested Subquery
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46661 MEDIUM
MariaDB 10.2.0-10.2.42 - Denial of Service via Unused Common Table Expression
Feb 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46659 MEDIUM
MariaDB 5.5.0-10.2.41 - Denial of Service via SELECT_LEX::nest_level Mismanagement
Jan 29, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46658 MEDIUM
MariaDB <10.6.3 - Memory Corruption
Jan 29, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-46657 MEDIUM
MariaDB <10.6.2 - Memory Corruption
Jan 29, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-35604 MEDIUM
MySQL Server 5.7.0-5.7.35 and 8.0.0-8.0.26 - Authenticated Denial of Service and Data Manipulation in InnoDB
Oct 20, 2021
CVSS 5.5
EPSS 0.00
Products
mariadb 405 MariaDB 6 connector\/c 1 maxscale 1 model_context_protocol 1 server 1
Quick Filters
Critical CVEs With Exploits In CISA KEV