10.0.36

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-29	CVE-2021-46659	MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW. local low complexity mariadb fedoraproject	5.5
2020-12-24	CVE-2020-28912	Unspecified vulnerability in Mariadb With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between the client and the server, and getting the ability to run SQL commands on behalf of the connected user. local mariadb	4.4
2019-01-16	CVE-2019-2503	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). oracle mariadb netapp canonical redhat	3.8
2018-10-17	CVE-2018-3282	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). network low complexity oracle netapp canonical debian mariadb redhat	4.9
2018-10-17	CVE-2018-3251	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle netapp canonical debian mariadb	4.0
2018-10-17	CVE-2018-3174	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). local high complexity oracle netapp canonical debian mariadb	5.3
2018-10-17	CVE-2018-3156	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle canonical debian netapp mariadb	4.0
2018-10-17	CVE-2018-3143	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). network low complexity oracle netapp canonical debian mariadb	4.0
2018-01-25	CVE-2017-15365	sql/event_data_objects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x before 5.7.19-29.22-3 allows remote authenticated users with SQL access to bypass intended access restrictions and replicate data definition language (DDL) statements to cluster nodes by leveraging incorrect ordering of DDL replication and ACL checking. network low complexity fedoraproject mariadb percona	8.8
2017-05-23	CVE-2016-9843	The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation. network low complexity zlib opensuse debian canonical oracle redhat apple netapp mariadb nodejs critical	9.8