Vulnerabilities > Mariadb > Mariadb > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-20 | CVE-2022-47015 | NULL Pointer Dereference vulnerability in Mariadb MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. | 6.5 |
2022-08-27 | CVE-2022-38791 | Improper Locking vulnerability in multiple products In MariaDB before 10.9.2, compress_write in extra/mariabackup/ds_compress.cc does not release data_mutex upon a stream write failure, which allows local users to trigger a deadlock. | 5.5 |
2022-05-25 | CVE-2022-31621 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31622 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31623 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-05-25 | CVE-2022-31624 | Improper Locking vulnerability in Mariadb MariaDB Server before 10.7 is vulnerable to Denial of Service. | 5.5 |
2022-02-01 | CVE-2021-46661 | MariaDB through 10.5.9 allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE). | 5.5 |
2022-02-01 | CVE-2021-46662 | Unspecified vulnerability in Mariadb MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery. | 5.5 |
2022-02-01 | CVE-2021-46663 | MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements. | 5.5 |
2022-02-01 | CVE-2021-46664 | NULL Pointer Dereference vulnerability in multiple products MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr. | 5.5 |