Mariadb : Security Vulnerabilities CVSS score between 7 and 7.99
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.
| Max Base Score | 7.5 |
| Published | 2023-09-27 |
| Updated | 2023-10-02 |
| EPSS | 0.05% |
MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at /libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-12-07 |
| EPSS | 0.12% |
MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-12-07 |
| EPSS | 0.10% |
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Exec_time_tracker::get_loops/Filesort_tracker::report_use/filesort.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-10-26 |
| EPSS | 0.08% |
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_args::walk_args.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-10-26 |
| EPSS | 0.08% |
MariaDB v10.4 to v10.8 was discovered to contain a segmentation fault via the component Item_field::fix_outer_field.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-10-25 |
| EPSS | 0.08% |
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Item_func_in::cleanup/Item::cleanup_processor.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-10-26 |
| EPSS | 0.08% |
MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component sub_select.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-12-07 |
| EPSS | 0.12% |
MariaDB v10.2 to v10.6.1 was discovered to contain a segmentation fault via the component Item_subselect::init_expr_cache_tracker.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-10-25 |
| EPSS | 0.08% |
MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table->get_ref_count() == 0 in dict0dict.cc.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-12-07 |
| EPSS | 0.10% |
MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepare_inplace_add_virtual at /storage/innobase/handler/handler0alter.cc.
| Max Base Score | 7.5 |
| Published | 2022-07-01 |
| Updated | 2022-12-07 |
| EPSS | 0.10% |
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component Binary_string::free_buffer() at /sql/sql_string.h.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-10-08 |
| EPSS | 0.09% |
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_mb_wc_latin1 at /strings/ctype-latin1.c.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-06-30 |
| EPSS | 0.09% |
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-10-08 |
| EPSS | 0.09% |
MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_wildcmp_8bit_impl at /strings/ctype-simple.c.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-06-30 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-09-29 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/field_conv.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-06-30 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-10-07 |
| EPSS | 0.09% |
There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-10-08 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component Binary_string::free_buffer() at /sql/sql_string.h.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-10-08 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.h.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-07-19 |
| EPSS | 0.08% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/sql_window.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-09-29 |
| EPSS | 0.09% |
MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_subselect.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-14 |
| Updated | 2022-07-19 |
| EPSS | 0.08% |
MariaDB Server v10.7 and below was discovered to contain a global buffer overflow in the component decimal_bin_size, which is exploited via specially crafted SQL statements.
| Max Base Score | 7.5 |
| Published | 2022-04-12 |
| Updated | 2022-09-29 |
| EPSS | 0.08% |
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component sql/sql_class.cc.
| Max Base Score | 7.5 |
| Published | 2022-04-12 |
| Updated | 2022-09-29 |
| EPSS | 0.10% |