10.5.2

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-29	CVE-2021-46659	MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW. local low complexity mariadb fedoraproject	5.5
2021-10-20	CVE-2021-35604	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle netapp fedoraproject mariadb	5.5
2021-07-21	CVE-2021-2372	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network high complexity oracle netapp fedoraproject mariadb	4.4
2021-07-21	CVE-2021-2389	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network high complexity oracle netapp fedoraproject mariadb	5.9
2021-05-27	CVE-2020-15180	Command Injection vulnerability in multiple products A flaw was found in the mysql-wsrep component of mariadb. network high complexity mariadb debian percona galeracluster CWE-77 critical	9.0
2021-04-22	CVE-2021-2194	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle fedoraproject netapp mariadb	4.9
2021-04-22	CVE-2021-2166	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). network low complexity oracle fedoraproject netapp mariadb	4.9
2021-04-22	CVE-2021-2154	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). network low complexity oracle mariadb netapp fedoraproject	4.9
2021-03-19	CVE-2021-27928	Code Injection vulnerability in multiple products A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. network low complexity mariadb percona galeracluster debian CWE-94 critical	9.0
2021-01-20	CVE-2021-2022	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network high complexity oracle netapp fedoraproject mariadb	4.4