📦 Mariadb

This CVE describes a remote code execution vulnerability in MariaDB v10.5 where an attacker could execute arbitrary code by loading a malicious shared object file via UDF (User Defined Function) and u...

This vulnerability allows remote attackers to execute arbitrary commands on MariaDB Galera cluster nodes through command injection in the wsrep_sst_method parameter. It affects MariaDB with the mysql-...

A vulnerability in MariaDB allows remote attackers to cause denial of service via port scans on ports 3306 and 4567. This affects MariaDB servers with these ports exposed to untrusted networks. The vu...

This vulnerability in MariaDB Server causes a segmentation fault via the sql/sql_window.cc component, which can lead to denial of service (DoS) by crashing the database server. It affects MariaDB Serv...

CVE-2022-27447 is a use-after-free vulnerability in MariaDB Server that occurs in the Binary_string::free_buffer() function. This memory corruption flaw could allow attackers to crash the database ser...

CVE-2022-27449 is a segmentation fault vulnerability in MariaDB Server that can cause denial of service (DoS) by crashing the database service. It affects MariaDB Server versions 10.9 and below. Datab...

CVE-2022-27376 is a use-after-free vulnerability in MariaDB Server's Item_args::walk_arg component that can be exploited via specially crafted SQL statements. This vulnerability affects MariaDB Server...

This vulnerability in MariaDB Server allows attackers to cause Denial of Service (DoS) by sending specially crafted SQL statements that trigger a flaw in the Create_tmp_table::finalize component. It a...

A vulnerability in MariaDB Server's my_decimal::operator= component allows attackers to cause Denial of Service (DoS) through specially crafted SQL statements. This affects MariaDB Server versions 10....

This vulnerability in MariaDB Server causes a segmentation fault through a specific component, potentially leading to denial of service. It affects MariaDB Server versions 10.7 and below. Attackers co...

This vulnerability in MariaDB Server allows attackers to cause a Denial of Service (DoS) by sending specially crafted SQL statements. It affects MariaDB Server versions 10.6 and below. Database admini...

CVE-2022-27386 is a SQL injection vulnerability in MariaDB Server that can cause a segmentation fault via sql/sql_class.cc, potentially leading to denial of service or arbitrary code execution. It aff...

This vulnerability in zlib allows memory corruption during compression (deflating) when processing input with many distant matches. It affects any software using vulnerable zlib versions for compressi...

CVE-2022-0778 is a denial-of-service vulnerability in OpenSSL's BN_mod_sqrt() function that can cause infinite loops when parsing specially crafted certificates or private keys containing invalid elli...

CVE-2022-24051 is a format string vulnerability in MariaDB's CONNECT storage engine that allows authenticated local attackers to escalate privileges and execute arbitrary code with service account per...

This CVE describes a use-after-free vulnerability in MariaDB's BIGINT data type handling that allows attackers to potentially crash the database server or execute arbitrary code. It affects MariaDB ve...

This CVE describes a potential remote code execution vulnerability in MariaDB v.11.1 through the lib_mysqludf_sys.so function. The vulnerability allows attackers to execute arbitrary code on affected ...