Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mariadb mariadb vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-24048
MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local malicious users to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw ...
Mariadb Mariadb
Mariadb Mariadb 10.8.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
7.8
CVSSv3
CVE-2020-7221
mysql_install_db in MariaDB 10.4.7 up to and including 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. NOTE: this does ...
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46657
get_sort_by_table in MariaDB prior to 10.6.2 allows an application crash via certain subquery uses of ORDER BY.
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46658
save_window_function_values in MariaDB prior to 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46662
MariaDB up to and including 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery.
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46666
MariaDB prior to 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27382
MariaDB Server v10.7 and below exists to contain a segmentation fault via the component Item_field::used_tables/update_depend_map_for_order.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27385
An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below exists to allow malicious users to cause a Denial of Service (DoS) via specially crafted SQL statements.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27444
MariaDB Server v10.9 and below exists to contain a segmentation fault via the component sql/item_subselect.cc.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27446
MariaDB Server v10.9 and below exists to contain a segmentation fault via the component sql/item_cmpfunc.h.
Mariadb Mariadb
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »