Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
261 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
262 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
263 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
264 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
265 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
266 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
267 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
268 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
269 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
270 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
271 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
272 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
273 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
274 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
275 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
276 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
277 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
278 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
279 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
280 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
281 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
282 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
283 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
284 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
285 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
261 -
4.0 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to InnoDB : DML. NVD-CWE-noinfo
CVE-2015-0433 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.42
10.0.17 		2024-11-21 11:23
2015-04-17 		Show GitHub Exploit DB Packet Storm
262 -
4.0 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key. NVD-CWE-noinfo
CVE-2015-0432 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:23
2015-01-22 		Show GitHub Exploit DB Packet Storm
263 -
7.5 		HIGH Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related… NVD-CWE-noinfo
CVE-2015-0411 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:23
2015-01-22 		Show GitHub Exploit DB Packet Storm
264 -
4.0 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, and 5.6.19 and earlier, allows remote authenticated users to affect availability via vectors related to DDL. NVD-CWE-noinfo
CVE-2015-0391 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.13
5.5.39 		2024-11-21 11:22
2015-01-22 		Show GitHub Exploit DB Packet Storm
265 -
4.3 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a differ… NVD-CWE-noinfo
CVE-2015-0382 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:22
2015-01-22 		Show GitHub Exploit DB Packet Storm
266 -
4.3 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote attackers to affect availability via unknown vectors related to Server : Replication, a differ… NVD-CWE-noinfo
CVE-2015-0381 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:22
2015-01-22 		Show GitHub Exploit DB Packet Storm
267 -
3.5 		LOW Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security… NVD-CWE-noinfo
CVE-2015-0374 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:22
2015-01-22 		Show GitHub Exploit DB Packet Storm
268 -
3.5 		LOW Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML. NVD-CWE-noinfo
CVE-2014-6568 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.16
5.5.41 		2024-11-21 11:14
2015-01-22 		Show GitHub Exploit DB Packet Storm
269 -
5.0 		MEDIUM Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an asser… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-8964 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0 10.0.18 2024-11-21 11:20
2014-12-17 		Show GitHub Exploit DB Packet Storm
270 -
4.0 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:INNODB FULLTEXT SEARCH DML. NVD-CWE-noinfo
CVE-2014-6564 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0 10.0.13 2024-11-21 11:14
2014-10-16 		Show GitHub Exploit DB Packet Storm