Mariadb

Mariadb

411 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-46657

Exploit
  • EPSS 0.07%
  • Veröffentlicht 29.01.2022 23:15:07
  • Zuletzt bearbeitet 21.11.2024 06:34:32

get_sort_by_table in MariaDB before 10.6.2 allows an application crash via certain subquery uses of ORDER BY.

5.5

CVE-2021-46658

Exploit
  • EPSS 0.08%
  • Veröffentlicht 29.01.2022 23:15:07
  • Zuletzt bearbeitet 21.11.2024 06:34:32

save_window_function_values in MariaDB before 10.6.3 allows an application crash because of incorrect handling of with_window_func=true for a subquery.

5.5

CVE-2021-46659

Exploit
  • EPSS 0.04%
  • Veröffentlicht 29.01.2022 23:15:07
  • Zuletzt bearbeitet 21.11.2024 06:34:32

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECT_LEX::nest_level is local to each VIEW.

5.5

CVE-2021-35604

  • EPSS 0.21%
  • Veröffentlicht 20.10.2021 11:17:06
  • Zuletzt bearbeitet 21.11.2024 06:12:37

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mu...

7.1

CVE-2021-2389

  • EPSS 0.55%
  • Veröffentlicht 21.07.2021 15:15:41
  • Zuletzt bearbeitet 21.11.2024 06:03:01

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via ...

3.5

CVE-2021-2372

  • EPSS 0.26%
  • Veröffentlicht 21.07.2021 15:15:32
  • Zuletzt bearbeitet 21.11.2024 06:02:59

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via ...

9

CVE-2020-15180

  • EPSS 4.6%
  • Veröffentlicht 27.05.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 05:05:01

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens t...

4

CVE-2021-2194

  • EPSS 1.17%
  • Veröffentlicht 22.04.2021 22:15:14
  • Zuletzt bearbeitet 21.11.2024 06:02:35

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mu...

4

CVE-2021-2166

  • EPSS 1.15%
  • Veröffentlicht 22.04.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 06:02:31

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v...

3.5

CVE-2021-2174

  • EPSS 0.95%
  • Veröffentlicht 22.04.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 06:02:32

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via ...