Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
321 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
322 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
323 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
324 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
325 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
326 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
327 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
328 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
329 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
330 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
331 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
332 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
333 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
334 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
335 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
336 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
337 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
338 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
339 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
340 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
341 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
342 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
343 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
344 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
345 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
321 -
4.9 		MEDIUM Unspecified vulnerability in Oracle MySQL Server 5.5.x through 5.5.32 and 5.6.x through 5.6.12 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to… NVD-CWE-noinfo
CVE-2013-5807 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.5
5.5.33 		2024-11-21 10:58
2013-10-17 		Show GitHub Exploit DB Packet Storm
322 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.70 and earlier, 5.5.32 and earlier, and 5.6.12 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2013-3839 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
5.5.0

10.0.5
5.5.33 		2024-11-21 10:54
2013-10-17 		Show GitHub Exploit DB Packet Storm
323 -
4.0 		MEDIUM Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the change_user command within the same connection wh… CWE-522
 Insufficiently Protected Credentials 		CVE-2012-5627 cpe:2.3:a:mariadb:mariadb:10.0.0:*
cpe:2.3:a:mariadb:mariadb:*:* 		5.2.0
5.3.0
5.5.0



5.2.14
5.3.12
5.5.29 		2024-11-21 10:45
2013-10-2 		Show GitHub Exploit DB Packet Storm
324 -
3.5 		LOW Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related … NVD-CWE-noinfo
CVE-2013-3812 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.32
10.0.4 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
325 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect integrity via unknown vectors related to … NVD-CWE-noinfo
CVE-2013-3809 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.32
10.0.4 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
326 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.68 and earlier, 5.5.30 and earlier, and 5.6.10 allows remote authenticated users to affect availability via unknown vectors… NVD-CWE-noinfo
CVE-2013-3808 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.31
10.0.3 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
327 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Prepared … NVD-CWE-noinfo
CVE-2013-3805 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.31
10.0.3 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
328 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2013-3804 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.32
10.0.4 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
329 -
4.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote authenticated users to affect availability via unk… NVD-CWE-noinfo
CVE-2013-3802 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.32
10.0.4 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm
330 -
5.0 		MEDIUM Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.30 and earlier and 5.6.10 allows remote authenticated users to affect availability via unknown vectors related to Server Op… NVD-CWE-noinfo
CVE-2013-3801 cpe:2.3:a:mariadb:mariadb:*:* 5.5.0
10.0.0

5.5.31
10.0.3 		2024-11-21 10:54
2013-07-17 		Show GitHub Exploit DB Packet Storm