Vulnerabilities > Mariadb > Mariadb > 5.1.42

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-5157 A vulnerability was found in MariaDB.
network
low complexity
mariadb fedoraproject redhat
7.5
2022-05-25 CVE-2022-31621 Improper Locking vulnerability in Mariadb
MariaDB Server before 10.7 is vulnerable to Denial of Service.
local
low complexity
mariadb CWE-667
5.5
2022-05-25 CVE-2022-31622 Improper Locking vulnerability in Mariadb
MariaDB Server before 10.7 is vulnerable to Denial of Service.
local
low complexity
mariadb CWE-667
5.5
2022-05-25 CVE-2022-31623 Improper Locking vulnerability in Mariadb
MariaDB Server before 10.7 is vulnerable to Denial of Service.
local
low complexity
mariadb CWE-667
5.5
2022-05-25 CVE-2022-31624 Improper Locking vulnerability in Mariadb
MariaDB Server before 10.7 is vulnerable to Denial of Service.
local
low complexity
mariadb CWE-667
5.5
2022-04-14 CVE-2022-27449 MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148.
network
low complexity
mariadb debian
7.5
2022-02-01 CVE-2021-46666 Reachable Assertion vulnerability in Mariadb
MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a HAVING clause to a WHERE clause.
local
low complexity
mariadb CWE-617
2.1
2022-02-01 CVE-2021-46667 Integer Overflow or Wraparound vulnerability in multiple products
MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash.
local
low complexity
mariadb fedoraproject CWE-190
5.5
2022-02-01 CVE-2021-46669 Use After Free vulnerability in multiple products
MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used.
network
low complexity
mariadb fedoraproject debian CWE-416
7.5
2020-12-24 CVE-2020-28912 Unspecified vulnerability in Mariadb
With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the named pipe connection and act as a man-in-the-middle, gaining access to all the data passed between the client and the server, and getting the ability to run SQL commands on behalf of the connected user.
local
mariadb
4.4