Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
161 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
162 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
163 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
164 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
165 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
166 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
167 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
168 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
169 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
170 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
171 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
172 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
173 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
174 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
175 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
176 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
177 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
178 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
179 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
180 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
181 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
182 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
183 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
184 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
185 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
161 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily… NVD-CWE-noinfo
CVE-2017-3641 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.32
10.1.26
10.2.8
5.5.57 		2024-11-21 12:25
2017-08-9 		Show GitHub Exploit DB Packet Storm
162 5.3
4.6 		MEDIUM
Local 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vul… NVD-CWE-noinfo
CVE-2017-3636 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.32
10.1.26
10.2.8
5.5.57 		2024-11-21 12:25
2017-08-9 		Show GitHub Exploit DB Packet Storm
163 9.8
7.5 		CRITICAL
Network 		The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation. NVD-CWE-noinfo
CVE-2016-9843 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.2.0
10.3.0
5.5.0
10.1.0







10.0.37
10.2.19
10.3.11
5.5.62
10.1.37 		2024-11-21 12:01
2017-05-23 		Show GitHub Exploit DB Packet Storm
164 6.6
6.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. D… NVD-CWE-noinfo
CVE-2017-3600 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.19
5.5.53 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
165 4.3
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily… NVD-CWE-noinfo
CVE-2017-3464 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.31
10.1.23
10.2.6
5.5.55 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
166 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily… NVD-CWE-noinfo
CVE-2017-3456 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.31
10.1.23
10.2.6
5.5.55 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
167 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. … NVD-CWE-noinfo
CVE-2017-3453 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.31
10.1.23
10.2.6
5.5.55 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
168 7.7
4.0 		HIGH
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. … NVD-CWE-noinfo
CVE-2017-3309 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.31
10.1.23
10.2.6
5.5.55 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
169 7.7
4.0 		HIGH
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily… NVD-CWE-noinfo
CVE-2017-3308 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.31
10.1.23
10.2.6
5.5.55 		2024-11-21 12:25
2017-04-25 		Show GitHub Exploit DB Packet Storm
170 7.5
5.0 		HIGH
Network 		Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3. CWE-416
 Use After Free 		CVE-2017-3302 cpe:2.3:a:mariadb:mariadb:*:*
10.0.0
10.1.0
10.2.0 		5.5.54
10.0.29
10.1.21
10.2.3





2024-11-21 12:25
2017-02-12 		Show GitHub Exploit DB Packet Storm