Логотип exploitDog
product: "mariadb"
Консоль
Логотип exploitDog

exploitDog

product: "mariadb"
MariaDB

MariaDBответвление от системы управления базами данных MySQL, разрабатываемое сообществом под лицензией GNU GPL.

Релизный цикл, информация об уязвимостях

Продукт: MariaDB
Вендор: mariadb

График релизов

10.610.710.810.910.1010.1111.011.111.211.311.411.511.611.711.812.012.12021202220232024202520262027202820292030

Недавние уязвимости MariaDB

Количество 2 149

ubuntu логотип

CVE-2016-0502

около 10 лет назад

Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

CVSS3: 6.5
EPSS: Низкий
redhat логотип

CVE-2016-2047

около 10 лет назад

The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated by "/OU=/CN=bar.com/CN=foo.com."

CVSS2: 4.9
EPSS: Низкий
nvd логотип

CVE-2015-4913

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

CVSS2: 3.5
EPSS: Низкий
debian логотип

CVE-2015-4913

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier an ...

CVSS2: 3.5
EPSS: Низкий
ubuntu логотип

CVE-2015-4913

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

CVSS2: 3.5
EPSS: Низкий
nvd логотип

CVE-2015-4895

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

CVSS2: 3.5
EPSS: Низкий
debian логотип

CVE-2015-4895

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier al ...

CVSS2: 3.5
EPSS: Низкий
nvd логотип

CVE-2015-4879

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML.

CVSS2: 4.6
EPSS: Низкий
debian логотип

CVE-2015-4879

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, a ...

CVSS2: 4.6
EPSS: Низкий
nvd логотип

CVE-2015-4870

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.

CVSS2: 4
EPSS: Средний

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
ubuntu логотип
CVE-2016-0502

Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

CVSS3: 6.5
1%
Низкий
около 10 лет назад
redhat логотип
CVE-2016-2047

The ssl_verify_server_cert function in sql-common/client.c in MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10; Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier; and Percona Server do not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a "/CN=" string in a field in a certificate, as demonstrated by "/OU=/CN=bar.com/CN=foo.com."

CVSS2: 4.9
2%
Низкий
около 10 лет назад
nvd логотип
CVE-2015-4913

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

CVSS2: 3.5
0%
Низкий
больше 10 лет назад
debian логотип
CVE-2015-4913

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier an ...

CVSS2: 3.5
0%
Низкий
больше 10 лет назад
ubuntu логотип
CVE-2015-4913

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.

CVSS2: 3.5
0%
Низкий
больше 10 лет назад
nvd логотип
CVE-2015-4895

Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : InnoDB.

CVSS2: 3.5
0%
Низкий
больше 10 лет назад
debian логотип
CVE-2015-4895

Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier al ...

CVSS2: 3.5
0%
Низкий
больше 10 лет назад
nvd логотип
CVE-2015-4879

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML.

CVSS2: 4.6
0%
Низкий
больше 10 лет назад
debian логотип
CVE-2015-4879

Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, a ...

CVSS2: 4.6
0%
Низкий
больше 10 лет назад
nvd логотип
CVE-2015-4870

Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.

CVSS2: 4
22%
Средний
больше 10 лет назад

Уязвимостей на страницу

Поделиться