MariaDB — ответвление от системы управления базами данных MySQL, разрабатываемое сообществом под лицензией GNU GPL.

Релизный цикл, информация об уязвимостях

Продукт: MariaDB

Вендор: mariadb

График релизов

Недавние уязвимости MariaDB

Количество 2 144

CVE-2015-2582

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier an ...

CVSS2: 4

EPSS: Низкий

CVE-2015-2620

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.

CVSS2: 4.3

EPSS: Низкий

CVE-2015-2582

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.

CVSS2: 4

EPSS: Низкий

CVE-2015-4757

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

CVSS2: 4

EPSS: Низкий

CVE-2015-2582

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.

CVSS2: 4

EPSS: Низкий

CVE-2015-2643

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

CVSS2: 4

EPSS: Низкий

CVE-2015-4752

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.

CVSS2: 4

EPSS: Низкий

CVE-2015-2648

больше 10 лет назад

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.

CVSS2: 4

EPSS: Низкий

CVE-2015-2620

больше 10 лет назад

CVSS2: 3.5

EPSS: Низкий

CVE-2015-3152

больше 10 лет назад

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack.

CVSS2: 4.3

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2015-2582 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier an ...	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-2620 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.	CVSS2: 4.3	1% Низкий	больше 10 лет назад
CVE-2015-2582 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-4757 Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier and 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.	CVSS2: 4	1% Низкий	больше 10 лет назад
CVE-2015-2582 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to GIS.	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-2643 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-4752 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : I_S.	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-2648 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.	CVSS2: 4	0% Низкий	больше 10 лет назад
CVE-2015-2620 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.	CVSS2: 3.5	1% Низкий	больше 10 лет назад
CVE-2015-3152 Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack.	CVSS2: 4.3	52% Средний	больше 10 лет назад

Уязвимостей на страницу