Vulnerabilities > Mariadb > Mariadb > 2.1.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-09-27 | CVE-2023-5157 | A vulnerability was found in MariaDB. | 7.5 |
2022-05-25 | CVE-2022-31621 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31622 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31623 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31624 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-04-14 | CVE-2022-27449 | MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148. | 7.5 |
2022-02-01 | CVE-2021-46666 | Reachable Assertion vulnerability in Mariadb MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause. | 2.1 |
2022-02-01 | CVE-2021-46667 | Integer Overflow or Wraparound vulnerability in multiple products MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash. | 5.5 |
2022-02-01 | CVE-2021-46669 | Use After Free vulnerability in multiple products MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used. | 7.5 |
2020-12-24 | CVE-2020-28912 | Unspecified vulnerability in Mariadb With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between the client and the server, and getting the ability to run SQL commands on behalf of the connected user. local mariadb | 4.4 |