Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
151 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
152 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
153 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
154 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
155 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
156 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
157 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
158 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
159 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
160 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
161 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
162 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
163 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
164 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
165 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
166 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
167 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
168 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
169 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
170 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
171 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
172 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
173 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
174 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
175 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
151 7.8
7.2 		HIGH
Local 		The installation scripts in the Gentoo dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/mysql-cluster, and dev-db/mariadb-galera packages before 2017-09-29 have chown calls for user-writab… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2017-15945 cpe:2.3:a:mariadb:mariadb:*:r1 10.0.30 2024-11-21 12:15
2017-10-28 		Show GitHub Exploit DB Packet Storm
152 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily expl… NVD-CWE-noinfo
CVE-2017-10384 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.32
10.1.26
10.2.8
5.5.57 		2024-11-21 12:06
2017-10-20 		Show GitHub Exploit DB Packet Storm
153 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Ea… CWE-863
 Incorrect Authorization 		CVE-2017-10379 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.32
10.1.26
10.2.8
5.5.57 		2024-11-21 12:06
2017-10-20 		Show GitHub Exploit DB Packet Storm
154 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. … NVD-CWE-noinfo
CVE-2017-10378 cpe:2.3:a:mariadb:mariadb:*:* 10.2.0
5.5.0
10.0.0
10.1.0





10.2.10
5.5.58
10.0.33
10.1.29 		2024-11-21 12:06
2017-10-20 		Show GitHub Exploit DB Packet Storm
155 3.8
5.5 		LOW
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high p… NVD-CWE-noinfo
CVE-2017-10365 cpe:2.3:a:mariadb:mariadb:*:* 10.2.0 10.2.8 2024-11-21 12:06
2017-10-20 		Show GitHub Exploit DB Packet Storm
156 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high p… NVD-CWE-noinfo
CVE-2017-10320 cpe:2.3:a:mariadb:mariadb:*:* 10.2.0 10.2.8 2024-11-21 12:05
2017-10-20 		Show GitHub Exploit DB Packet Storm
157 4.4
3.5 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vu… NVD-CWE-noinfo
CVE-2017-10286 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0



10.0.32
10.1.26
10.2.8 		2024-11-21 12:05
2017-10-20 		Show GitHub Exploit DB Packet Storm
158 4.1
1.5 		MEDIUM
Local 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier… NVD-CWE-noinfo
CVE-2017-10268 cpe:2.3:a:mariadb:mariadb:*:* 10.2.0
5.5.0
10.0.0
10.1.0





10.2.10
5.5.58
10.0.33
10.1.29 		2024-11-21 12:05
2017-10-20 		Show GitHub Exploit DB Packet Storm
159 3.1
3.5 		LOW
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Diffic… NVD-CWE-noinfo
CVE-2017-3653 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.32
10.1.26
10.2.8
5.5.57 		2024-11-21 12:26
2017-08-9 		Show GitHub Exploit DB Packet Storm
160 4.3
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. E… NVD-CWE-noinfo
CVE-2017-3651 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.19
5.5.53 		2024-11-21 12:26
2017-08-9 		Show GitHub Exploit DB Packet Storm