CVE-2026-48165
- EPSS 0.97%
- Veröffentlicht 12.06.2026 17:35:16
- Zuletzt bearbeitet 02.07.2026 12:17:28
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high-privileged MariaDB user could've used wsrep_sst_re...
CVE-2026-48163
- EPSS 0.65%
- Veröffentlicht 12.06.2026 17:34:57
- Zuletzt bearbeitet 02.07.2026 12:17:28
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, during the SST the donor node is interpolating parameters...
CVE-2026-44173
- EPSS 0.4%
- Veröffentlicht 12.06.2026 17:34:30
- Zuletzt bearbeitet 02.07.2026 12:17:21
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB allowed SELECT ... INTO OUTFILE and SELECT ... IN...
CVE-2026-44172
- EPSS 0.42%
- Veröffentlicht 12.06.2026 17:34:04
- Zuletzt bearbeitet 06.07.2026 13:16:56
MariaDB server is a community developed fork of MySQL server. In versions 3.3.18 and 3.4.8, an application that was taking non-validated user input, escaping it with mysql_real_escape_string() and sending it to the database using text protocol and bi...
CVE-2026-44171
- EPSS 0.14%
- Veröffentlicht 12.06.2026 17:33:27
- Zuletzt bearbeitet 16.06.2026 19:38:49
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, mbstream did not check for /../ in the path when unpackin...
- EPSS 0.57%
- Veröffentlicht 12.06.2026 17:31:26
- Zuletzt bearbeitet 02.07.2026 12:17:20
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, during the SST the donor node is interpolating parameters...
CVE-2026-44170
- EPSS 0.8%
- Veröffentlicht 12.06.2026 17:30:15
- Zuletzt bearbeitet 02.07.2026 12:17:20
MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB on WIndows with installed CONNECT engine and enab...
CVE-2026-49261
- EPSS 1%
- Veröffentlicht 11.06.2026 17:13:20
- Zuletzt bearbeitet 01.07.2026 13:17:39
MariaDB server is a community developed fork of MySQL server. Versions 10.6.1 through 10.6.26, 10.11.1 through 10.11.17, 11.4.1 through 11.4.11, 11.8.1 through 11.8.7, and 12.3.1 with `wsrep_notify_cmd` enabled would execute shell commands embedded ...
CVE-2026-35549
- EPSS 0.26%
- Veröffentlicht 03.04.2026 05:16:23
- Zuletzt bearbeitet 02.06.2026 17:44:27
An issue was discovered in MariaDB Server before 11.4.10, 11.5.x through 11.8.x before 11.8.6, and 12.x before 12.2.2. If the caching_sha2_password authentication plugin is installed, and some user accounts are configured to use it, a large packet ca...
CVE-2026-32710
- EPSS 0.86%
- Veröffentlicht 20.03.2026 18:31:48
- Zuletzt bearbeitet 31.03.2026 21:13:18
MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn...