Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mariadb vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2021-27928
A remote code execution issue exists in MariaDB 10.2 prior to 10.2.37, 10.3 prior to 10.3.28, 10.4 prior to 10.4.18, and 10.5 prior to 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in...
Mariadb Mariadb
Percona Percona Server
Galeracluster Wsrep
Debian Debian Linux 9.0
10 Github repositories
5.5
CVSSv3
CVE-2021-46667
MariaDB prior to 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash.
Mariadb Mariadb
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
5.5
CVSSv3
CVE-2021-46668
MariaDB up to and including 10.5.9 allows an application crash via certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations for temporary data structures.
Mariadb Mariadb
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
4.4
CVSSv3
CVE-2022-21595
Vulnerability in the MySQL Server product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromis...
Oracle Mysql
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Mariadb Mariadb
7.8
CVSSv3
CVE-2015-2325
The compile_branch function in PCRE prior to 8.37 allows context-dependent malicious users to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forwar...
Pcre Pcre
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mariadb Mariadb
Php Php
5.5
CVSSv3
CVE-2015-2326
The pcre_compile2 function in PCRE prior to 8.37 allows context-dependent malicious users to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back re...
Pcre Pcre
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mariadb Mariadb
Php Php
7.5
CVSSv3
CVE-2021-46669
MariaDB up to and including 10.5.9 allows malicious users to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
Mariadb Mariadb
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2016-3471
Unspecified vulnerability in Oracle MySQL 5.5.45 and previous versions and 5.6.26 and previous versions allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Option.
Oracle Mysql
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Mariadb Mariadb
5.9
CVSSv3
CVE-2015-7744
wolfSSL (formerly CyaSSL) prior to 3.6.8 does not properly handle faults associated with the Chinese Remainder Theorem (CRT) process when allowing ephemeral key exchange without low memory optimizations on a server, which makes it easier for remote malicious users to obtain priva...
Wolfssl Wolfssl
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mariadb Mariadb
6.5
CVSSv3
CVE-2016-0502
Unspecified vulnerability in Oracle MySQL 5.5.31 and previous versions and 5.6.11 and previous versions allows remote authenticated users to affect availability via unknown vectors related to Optimizer.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Oracle Mysql
Mariadb Mariadb
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »