Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mariadb mariadb vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-46666
MariaDB prior to 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.
Mariadb Mariadb
5.5
CVSSv3
CVE-2022-31621
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. In extra/mariabackup/ds_xbstream.cc, when an error occurs (stream_ctxt->dest_file == NULL) while executing the method xbstream_open, the held lock is not released correctly, which allows local users to trigger a ...
Mariadb Mariadb
5.5
CVSSv3
CVE-2022-31624
MariaDB Server prior to 10.7 is vulnerable to Denial of Service. While executing the plugin/server_audit/server_audit.c method log_statement_ex, the held lock lock_bigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock.
Mariadb Mariadb
6.5
CVSSv3
CVE-2022-47015
MariaDB Server prior to 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-32086
MariaDB v10.4 to v10.8 exists to contain a segmentation fault via the component Item_field::fix_outer_field.
Mariadb Mariadb
7
CVSSv3
CVE-2020-28912
With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all t...
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46658
save_window_function_values in MariaDB prior to 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.
Mariadb Mariadb
5.5
CVSSv3
CVE-2021-46662
MariaDB up to and including 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27382
MariaDB Server v10.7 and below exists to contain a segmentation fault via the component Item_field::used_tables/update_depend_map_for_order.
Mariadb Mariadb
7.5
CVSSv3
CVE-2022-27385
An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of MariaDB Server v10.7 and below exists to allow malicious users to cause a Denial of Service (DoS) via specially crafted SQL statements.
Mariadb Mariadb
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »