Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
181 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
182 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
183 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
184 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
185 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
186 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
187 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
188 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
189 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
190 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
191 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
192 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
193 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
194 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
195 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
196 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
197 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
198 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
199 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
200 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
201 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
202 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
203 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
204 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
205 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
181 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. … NVD-CWE-noinfo
CVE-2017-3238 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.1.0
10.0.0



5.5.54
10.1.21
10.0.29 		2024-11-21 12:25
2017-01-28 		Show GitHub Exploit DB Packet Storm
182 7.0
6.9 		HIGH
Local 		mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percon… CWE-59
Link Following 		CVE-2016-6664 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.1.0
10.0.0



5.5.54
10.1.21
10.0.29 		2024-11-21 11:56
2016-12-14 		Show GitHub Exploit DB Packet Storm
183 7.0
4.4 		HIGH
Local 		Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server b… CWE-362
Race Condition 		CVE-2016-6663 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.20
10.1.0



10.0.28
5.5.52
10.1.18 		2024-11-21 11:56
2016-12-14 		Show GitHub Exploit DB Packet Storm
184 5.5
2.1 		MEDIUM
Local 		The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differen… NVD-CWE-noinfo
CVE-2016-7440 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.19
5.5.53 		2024-11-21 11:58
2016-12-14 		Show GitHub Exploit DB Packet Storm
185 4.3
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types. NVD-CWE-noinfo
CVE-2016-8283 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.20
10.1.0



10.0.28
5.5.52
10.1.38 		2024-11-21 11:59
2016-10-25 		Show GitHub Exploit DB Packet Storm
186 4.9
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.6.31 and earlier and 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. NVD-CWE-noinfo
CVE-2016-5630 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0 10.0.27 2024-11-21 11:54
2016-10-25 		Show GitHub Exploit DB Packet Storm
187 4.9
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: Federated. NVD-CWE-noinfo
CVE-2016-5629 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.18
5.5.52 		2024-11-21 11:54
2016-10-25 		Show GitHub Exploit DB Packet Storm
188 6.5
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availability via vectors related to GIS. NVD-CWE-noinfo
CVE-2016-5626 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.18
5.5.52 		2024-11-21 11:54
2016-10-25 		Show GitHub Exploit DB Packet Storm
189 6.5
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier allows remote authenticated users to affect availability via vectors related to DML. NVD-CWE-noinfo
CVE-2016-5624 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
5.5.0



10.0.28
10.1.18
5.5.52 		2024-11-21 11:54
2016-10-25 		Show GitHub Exploit DB Packet Storm
190 6.5
4.0 		MEDIUM
Network 		Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML. NVD-CWE-noinfo
CVE-2016-5612 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.27
5.5.51 		2024-11-21 11:54
2016-10-25 		Show GitHub Exploit DB Packet Storm