MariaDB — ответвление от системы управления базами данных MySQL, разрабатываемое сообществом под лицензией GNU GPL.

Релизный цикл, информация об уязвимостях

Продукт: MariaDB

Вендор: mariadb

График релизов

Недавние уязвимости MariaDB

Количество 2 144

CVE-2012-5060

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.65 and earlier and 5.5.27 and earlier allows remote authenticated users to affect availability, related to GIS Extension.

CVSS2: 4

EPSS: Низкий

CVE-2013-0389

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.

CVSS2: 4

EPSS: Низкий

CVE-2012-0574

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors.

CVSS2: 4

EPSS: Низкий

CVE-2013-0367

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Partition.

CVSS2: 4

EPSS: Низкий

CVE-2012-0572

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

CVSS2: 4

EPSS: Низкий

CVE-2013-0368

больше 12 лет назад

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

CVSS2: 4

EPSS: Низкий

CVE-2012-5615

больше 12 лет назад

Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.

CVSS2: 5

EPSS: Средний

CVE-2012-5615

больше 12 лет назад

Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.2 ...

CVSS2: 5

EPSS: Средний

CVE-2012-5614

больше 12 лет назад

Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.

CVSS2: 4

EPSS: Низкий

CVE-2012-5614

больше 12 лет назад

Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5. ...

CVSS2: 4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2012-5060 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.65 and earlier and 5.5.27 and earlier allows remote authenticated users to affect availability, related to GIS Extension.	CVSS2: 4	1% Низкий	больше 12 лет назад
CVE-2013-0389 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer.	CVSS2: 4	2% Низкий	больше 12 лет назад
CVE-2012-0574 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors.	CVSS2: 4	1% Низкий	больше 12 лет назад
CVE-2013-0367 Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Partition.	CVSS2: 4	1% Низкий	больше 12 лет назад
CVE-2012-0572 Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier and 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.	CVSS2: 4	1% Низкий	больше 12 лет назад
CVE-2013-0368 Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.	CVSS2: 4	1% Низкий	больше 12 лет назад
CVE-2012-5615 Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.	CVSS2: 5	20% Средний	больше 12 лет назад
CVE-2012-5615 Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.2 ...	CVSS2: 5	20% Средний	больше 12 лет назад
CVE-2012-5614 Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.	CVSS2: 4	8% Низкий	больше 12 лет назад
CVE-2012-5614 Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5. ...	CVSS2: 4	8% Низкий	больше 12 лет назад

Уязвимостей на страницу