Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
311 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
312 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
313 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
314 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
315 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
316 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
317 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
318 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
319 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
320 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
321 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
322 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
323 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
324 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
325 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
326 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
327 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
328 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
329 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
330 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
331 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
332 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
333 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
334 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
335 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
311 -
7.5 		HIGH Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-0001 cpe:2.3:a:mariadb:mariadb:*:* 5.5.34 2024-11-21 11:01
2014-02-1 		Show GitHub Exploit DB Packet Storm
312 -
3.5 		LOW Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2014-0437 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.35
10.0.8 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
313 -
2.8 		LOW Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.34 and earlier, and 5.6.14 and earlier, allows remote authenticated users to affect availability via unknown vectors relate… NVD-CWE-noinfo
CVE-2014-0420 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.35
10.0.8 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
314 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2014-0412 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.35
10.0.8 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
315 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2014-0402 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.34
10.0.7 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
316 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2014-0401 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.35
10.0.8 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
317 -
3.3 		LOW Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect integrity via unknow… NVD-CWE-noinfo
CVE-2014-0393 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.34
10.0.7 		2024-11-21 11:02
2014-01-16 		Show GitHub Exploit DB Packet Storm
318 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.71 and earlier, 5.5.33 and earlier, and 5.6.13 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2014-0386 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.34
10.0.7 		2024-11-21 11:01
2014-01-16 		Show GitHub Exploit DB Packet Storm
319 -
2.6 		LOW Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.72 and earlier, 5.5.34 and earlier, and 5.6.14 and earlier allows remote attackers to affect availability via unknown vecto… NVD-CWE-noinfo
CVE-2013-5908 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.35
10.0.8 		2024-11-21 10:58
2014-01-16 		Show GitHub Exploit DB Packet Storm
320 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.33 and earlier and 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related … NVD-CWE-noinfo
CVE-2013-5891 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.34
10.0.7 		2024-11-21 10:58
2014-01-16 		Show GitHub Exploit DB Packet Storm