Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mariadb mariadb vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38791
In MariaDB prior to 10.9.2, compress_write in extra/mariabackup/ds_compress.cc does not release data_mutex upon a stream write failure, which allows local users to trigger a deadlock.
Mariadb Mariadb
Mariadb Mariadb 10.9.1
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
392
VMScore
CVE-2020-28912
With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all t...
Mariadb Mariadb
641
VMScore
CVE-2020-7221
mysql_install_db in MariaDB 10.4.7 up to and including 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. NOTE: this does ...
Mariadb Mariadb
187
VMScore
CVE-2022-31621
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_xbstream.cc, when an error occurs (stream_ctxt->dest_file == NULL) while executing the method xbstream_open, the held lock is not released correctly, which allows local users to trigger a ...
Mariadb Mariadb
187
VMScore
CVE-2022-31622
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (pthread_create returns a nonzero value) while executing the method create_worker_threads, the held lock is not released correctly, which allows local users ...
Mariadb Mariadb
187
VMScore
CVE-2022-31623
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_compress.cc, when an error occurs (i.e., going to the err label) while executing the method create_worker_threads, the held lock thd->ctrl_mutex is not released correctly, which allows loc...
Mariadb Mariadb
187
VMScore
CVE-2022-31624
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. While executing the plugin/server_audit/server_audit.c method log_statement_ex, the held lock lock_bigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock.
Mariadb Mariadb
445
VMScore
CVE-2022-27444
MariaDB Server v10.9 and below exists to contain a segmentation fault via the component sql/item_subselect.cc.
Mariadb Mariadb
445
VMScore
CVE-2022-27446
MariaDB Server v10.9 and below exists to contain a segmentation fault via the component sql/item_cmpfunc.h.
Mariadb Mariadb
445
VMScore
CVE-2022-27451
MariaDB Server v10.9 and below exists to contain a segmentation fault via the component sql/field_conv.cc.
Mariadb Mariadb
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »