Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2022-24052

Published: 18/02/2022 Updated: 07/11/2023
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Mariadb

Vulnerability Summary

MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local malicious users to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16190.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mariadb mariadb

mariadb mariadb 10.8.0

fedoraproject fedora 34

fedoraproject fedora 35

fedoraproject fedora 36

Vendor Advisories

Red Hat: Moderate: rh-mariadb103-galera and rh-mariadb103-mariadb security and bug fix update
Synopsis Moderate: rh-mariadb103-galera and rh-mariadb103-mariadb security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for rh-mariadb103-galera and rh-mariadb103-mariadb is now available fo ...
Red Hat: Moderate: mariadb:10.3 security and bug fix update
Synopsis Moderate: mariadb:103 security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the mariadb:103 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has ...
Red Hat: Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
Synopsis Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for galera, mariadb, and mysql-selinux is now available for Red Hat ...
Red Hat: Moderate: rh-mariadb105-galera and rh-mariadb105-mariadb security and bugfix update
概述 Moderate: rh-mariadb105-galera and rh-mariadb105-mariadb security and bugfix update 类型/严重性 Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems 标题 An update for rh-mariadb105-galera and rh-mariadb105-mariadb is now available f ...
Red Hat: Moderate: mariadb:10.5 security, bug fix, and enhancement update
Synopsis Moderate: mariadb:105 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the mariadb:105 module is now available for Red Hat Enterprise Linux 8Red Hat Produc ...
Amazon Linux 2: ALASMARIADB10.5-2023-003
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB) Supported versions that are affected are 5734 and prior and 8025 and prior Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vulnerability can result i ...
Amazon Linux 2022: ALAS2022-2022-069
MariaDB before 1072 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW (CVE-2021-46659) MariaDB through 1059 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE) (CVE-2021-46661) MariaDB through 10513 allows a ha_maria: ...
Amazon Linux 2022: ALAS2022-2022-182
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB) Supported versions that are affected are 5734 and prior and 8025 and prior Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vulnerability can result i ...

References

CWE-122https://mariadb.com/kb/en/security/https://www.zerodayinitiative.com/advisories/ZDI-22-367/https://security.netapp.com/advisory/ntap-20220318-0004/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJ4KDAGF3H4D4BDTHRAM6ZEAJJWWMRUO/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DKJRBYJAQCOPHSED43A3HUPNKQLDTFGD/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZFZVMJL5UDTOZMARLXQIMG3BTG6UNYW/https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2022:6306https://www.zerodayinitiative.com/advisories/ZDI-22-366/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook