Software Detail

Software Informaton Top

Database

Software Detail

MariaDB Server

Number Of NVD

399

CRITICAL

HIGH

MEDIUM

277

LOW

URL	https://mariadb.org/
Explanation	It is a relational database management system (RDBMS) derived from MySQL. Paid support is available for MariaDB Enterprise Server. Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux. It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag	商用ライセンス有りオープンソース GPL v2

Add Information URL

No	Type	Name	URL
1			https://downloads.mariadb.org/mariadb/+releases/
2			https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3			https://mariadb.com/downloads/
4			https://mariadb.com/kb/en/mariadb-server/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Critical	High	Medium	Low
21	MariaDB 11.2	11.2.6	Nov. 1, 2024	June 20, 2023		0	0	0	0
22	MariaDB 11.1	11.1.6	Aug. 8, 2024	March 27, 2023		0	0	0	0
23	MariaDB 11.0	11.0.6	May 16, 2024	Dec. 27, 2022	June 30, 2024	0	0	0	0
24	MariaDB 10.11	10.11.13	May 22, 2025	Sept. 26, 2022	Feb. 28, 2028	0	0	1	0
25	MariaDB 10.10	10.10.7	Nov. 13, 2023	June 21, 2022	Nov. 30, 2023	0	0	1	0
26	MariaDB 10.9	10.9.8	Aug. 14, 2023	March 23, 2022		0	7	2	0
27	MariaDB 10.8	10.8.8	May 10, 2023	Dec. 21, 2021		0	14	2	0
28	MariaDB 10.7	10.7.8	Feb. 6, 2023	Sept. 17, 2021	Feb. 28, 2023	0	40	10	0
29	MariaDB 10.6	10.6.22	May 6, 2025	April 26, 2021	June 30, 2026	0	41	20	0
30	MariaDB 10.5	10.5.29	May 6, 2025	Dec. 3, 2019	June 24, 2025	1	43	30	0
31	MariaDB 10.4	10.4.34	May 16, 2024	July 2, 2019	July 2, 2022	1	44	46	2
32	MariaDB 10.3	10.3.39	May 10, 2023	May 25, 2018	May 25, 2023	2	35	63	3
33	MariaDB 10.2	10.2.44	May 20, 2022	May 23, 2017	May 23, 2022	2	31	99	6
34	MariaDB 10.1	10.1.48	Nov. 3, 2020	Oct. 17, 2015	Oct. 17, 2020	3	19	115	21
35	MariaDB 5.3	5.3.9			Jan. 1, 2000	0	10	23	1
36	MariaDB 5.2	5.2.9			Jan. 1, 2000	0	10	23	1
37	MariaDB 5.1	5.1.67			Jan. 1, 2000	0	13	34	5
38	MariaDB 2.5	2.5.1			Jan. 1, 2000	0	10	7	1
39	MariaDB 2.4	2.4.2			Jan. 1, 2000	0	10	7	1
40	MariaDB 2.3	2.3.1			Jan. 1, 2000	0	10	7	1
41	MariaDB 2.2	2.2.0			Jan. 1, 2000	0	10	7	1
42	MariaDB 2.1	2.13.0			Jan. 1, 2000	0	11	7	1
43	MariaDB 2.0	2.0.5			Jan. 1, 2000	0	10	7	1
44	MariaDB 1.0	1.0.2			Jan. 1, 2000	0	10	7	1
45	MariaDB 0.7	0.7.0			Jan. 1, 2000	0	10	7	1

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or higher	less than	Update date Published date	Show Affected	Exploit PoC Search
21	7.5 5.0	HIGH Network	MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_mb_wc_latin1 at /strings/ctype-latin1.c.	CWE-416 Use After Free	CVE-2022-27457	cpe:2.3:a:mariadb:mariadb::	10.7.0 10.4.0 10.5.0 10.6.0	10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

22	7.5 5.0	HIGH Network	MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component VDec::VDec at /sql/sql_type.cc.	CWE-416 Use After Free	CVE-2022-27456	cpe:2.3:a:mariadb:mariadb::	10.3.0 10.7.0 10.4.0 10.5.0 10.6.0	10.3.35 10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

23	7.5 5.0	HIGH Network	MariaDB Server v10.6.3 and below was discovered to contain an use-after-free in the component my_wildcmp_8bit_impl at /strings/ctype-simple.c.	CWE-416 Use After Free	CVE-2022-27455	cpe:2.3:a:mariadb:mariadb::	10.7.0 10.4.0 10.5.0 10.6.0	10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

24	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.cc.	NVD-CWE-noinfo	CVE-2022-27452	cpe:2.3:a:mariadb:mariadb::	10.3.0 10.7.0 10.4.0 10.5.0 10.6.0	10.3.35 10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

25	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/field_conv.cc.	NVD-CWE-noinfo	CVE-2022-27451	cpe:2.3:a:mariadb:mariadb::	10.7.0 10.4.0 10.5.0 10.6.0	10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

26	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_func.cc:148.	NVD-CWE-noinfo	CVE-2022-27449	cpe:2.3:a:mariadb:mariadb::	10.7.0 10.4.0 10.5.0 10.6.0	10.7.4 10.4.25 10.5.16 10.6.8 10.3.35	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

27	7.5 5.0	HIGH Network	There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos == BTR_PCUR_ON' at /row/row0mysql.cc.	CWE-617 Reachable Assertion	CVE-2022-27448	cpe:2.3:a:mariadb:mariadb::	10.3.0 10.7.0 10.4.0 10.5.0 10.6.0	10.3.35 10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

28	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a use-after-free via the component Binary_string::free_buffer() at /sql/sql_string.h.	CWE-416 Use After Free	CVE-2022-27447	cpe:2.3:a:mariadb:mariadb::	10.3.0 10.7.0 10.4.0 10.5.0 10.6.0	10.3.35 10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

29	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/item_cmpfunc.h.	NVD-CWE-noinfo	CVE-2022-27446	cpe:2.3:a:mariadb:mariadb::	10.7.0 10.4.0 10.5.0 10.6.0	10.7.4 10.4.25 10.5.16 10.6.8	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm

30	7.5 5.0	HIGH Network	MariaDB Server v10.9 and below was discovered to contain a segmentation fault via the component sql/sql_window.cc.	NVD-CWE-noinfo	CVE-2022-27445	cpe:2.3:a:mariadb:mariadb::	10.3.0 10.7.0 10.4.0 10.5.0 10.6.0 10.2.0	10.3.35 10.7.4 10.4.25 10.5.16 10.6.8 10.2.44	2024-11-21 15:55 2022-04-14	Show	GitHub Exploit DB Packet Storm