Software Detail

Software Informaton Top

Database

Software Detail

MariaDB Server

Number Of NVD

399

CRITICAL

HIGH

MEDIUM

277

LOW

URL	https://mariadb.org/
Explanation	It is a relational database management system (RDBMS) derived from MySQL. Paid support is available for MariaDB Enterprise Server. Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux. It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag	商用ライセンス有りオープンソース GPL v2

Add Information URL

No	Type	Name	URL
1			https://downloads.mariadb.org/mariadb/+releases/
2			https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3			https://mariadb.com/downloads/
4			https://mariadb.com/kb/en/mariadb-server/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Critical	High	Medium	Low
371	MariaDB 11.2	11.2.6	Nov. 1, 2024	June 20, 2023		0	0	0	0
372	MariaDB 11.1	11.1.6	Aug. 8, 2024	March 27, 2023		0	0	0	0
373	MariaDB 11.0	11.0.6	May 16, 2024	Dec. 27, 2022	June 30, 2024	0	0	0	0
374	MariaDB 10.11	10.11.13	May 22, 2025	Sept. 26, 2022	Feb. 28, 2028	0	0	1	0
375	MariaDB 10.10	10.10.7	Nov. 13, 2023	June 21, 2022	Nov. 30, 2023	0	0	1	0
376	MariaDB 10.9	10.9.8	Aug. 14, 2023	March 23, 2022		0	7	2	0
377	MariaDB 10.8	10.8.8	May 10, 2023	Dec. 21, 2021		0	14	2	0
378	MariaDB 10.7	10.7.8	Feb. 6, 2023	Sept. 17, 2021	Feb. 28, 2023	0	40	10	0
379	MariaDB 10.6	10.6.22	May 6, 2025	April 26, 2021	June 30, 2026	0	41	20	0
380	MariaDB 10.5	10.5.29	May 6, 2025	Dec. 3, 2019	June 24, 2025	1	43	30	0
381	MariaDB 10.4	10.4.34	May 16, 2024	July 2, 2019	July 2, 2022	1	44	46	2
382	MariaDB 10.3	10.3.39	May 10, 2023	May 25, 2018	May 25, 2023	2	35	63	3
383	MariaDB 10.2	10.2.44	May 20, 2022	May 23, 2017	May 23, 2022	2	31	99	6
384	MariaDB 10.1	10.1.48	Nov. 3, 2020	Oct. 17, 2015	Oct. 17, 2020	3	19	115	21
385	MariaDB 5.3	5.3.9			Jan. 1, 2000	0	10	23	1
386	MariaDB 5.2	5.2.9			Jan. 1, 2000	0	10	23	1
387	MariaDB 5.1	5.1.67			Jan. 1, 2000	0	13	34	5
388	MariaDB 2.5	2.5.1			Jan. 1, 2000	0	10	7	1
389	MariaDB 2.4	2.4.2			Jan. 1, 2000	0	10	7	1
390	MariaDB 2.3	2.3.1			Jan. 1, 2000	0	10	7	1
391	MariaDB 2.2	2.2.0			Jan. 1, 2000	0	10	7	1
392	MariaDB 2.1	2.13.0			Jan. 1, 2000	0	11	7	1
393	MariaDB 2.0	2.0.5			Jan. 1, 2000	0	10	7	1
394	MariaDB 1.0	1.0.2			Jan. 1, 2000	0	10	7	1
395	MariaDB 0.7	0.7.0			Jan. 1, 2000	0	10	7	1

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or higher	less than	Update date Published date	Show Affected	Exploit PoC Search
371	- 5.0	MEDIUM	Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending …	CWE-200 Information Exposure	CVE-2012-5615	cpe:2.3:a:mariadb:mariadb:5.5.28a:* cpe:2.3:a:mariadb:mariadb:5.3.11:* cpe:2.3:a:mariadb:mariadb:5.2.13:* cpe:…			2024-11-21 10:44 2012-12-3	Show	GitHub Exploit DB Packet Storm

372	- 4.0	MEDIUM	Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT com…	NVD-CWE-noinfo	CVE-2012-5614	cpe:2.3:a:mariadb:mariadb::	5.5.0 10.0.0	5.5.30 10.0.2	2024-11-21 10:44 2012-12-3	Show	GitHub Exploit DB Packet Storm

373	- 6.0	MEDIUM	MySQL 5.5.19 and possibly other versions, and MariaDB 5.5.28a and possibly other versions, when configured to assign the FILE privilege to users who should not have administrative privileges, allows …	CWE-16 Configuration	CVE-2012-5613	cpe:2.3:a:mariadb:mariadb:5.5.28a:*			2024-11-21 10:44 2012-12-3	Show	GitHub Exploit DB Packet Storm

374	- 6.5	MEDIUM	Heap-based buffer overflow in Oracle MySQL 5.5.19 and other versions through 5.5.28, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (m…	CWE-787 Out-of-bounds Write	CVE-2012-5612	cpe:2.3:a:mariadb:mariadb:10.0.0:* cpe:2.3:a:mariadb:mariadb::	5.2.0 5.3.0 5.5.0 5.1.0	5.2.14 5.3.12 5.5.29 5.1.67	2024-11-21 10:44 2012-12-3	Show	GitHub Exploit DB Packet Storm

375	- 6.5	MEDIUM	Stack-based buffer overflow in the acl_get function in Oracle MySQL 5.5.19 and other versions through 5.5.28, and 5.1.53 and other versions through 5.1.66, and MariaDB 5.5.2.x before 5.5.28a, 5.3.x b…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5611	cpe:2.3:a:mariadb:mariadb:5.5.28:* cpe:2.3:a:mariadb:mariadb:5.5.27:* cpe:2.3:a:mariadb:mariadb:5.5.25:* cpe:2…			2024-11-21 10:44 2012-12-3	Show	GitHub Exploit DB Packet Storm

376	- 3.5	LOW	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and 5.5.26 and earlier, allows remote authenticated users to affect availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2012-3197	cpe:2.3:a:mariadb:mariadb::	5.5.0 5.1.0	5.5.27 5.1.66	2024-11-21 10:40 2012-10-17	Show	GitHub Exploit DB Packet Storm

377	- 4.0	MEDIUM	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows remote authenticated users to affect availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2012-3180	cpe:2.3:a:mariadb:mariadb::	5.1.0 5.5.0	5.1.66 5.5.28	2024-11-21 10:40 2012-10-17	Show	GitHub Exploit DB Packet Storm

378	- 6.8	MEDIUM	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.65 and earlier, and 5.5.27 and earlier, allows remote authenticated users to affect availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2012-3177	cpe:2.3:a:mariadb:mariadb::	5.5.0 5.1.0	5.5.27 5.1.66	2024-11-21 10:40 2012-10-17	Show	GitHub Exploit DB Packet Storm

379	- 4.0	MEDIUM	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2012-3173	cpe:2.3:a:mariadb:mariadb::	5.5.0 5.1.0	5.5.27 5.1.66	2024-11-21 10:40 2012-10-17	Show	GitHub Exploit DB Packet Storm

380	- 3.5	LOW	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.63 and earlier, and 5.5.25 and earlier, allows remote authenticated users to affect availability via unknown vectors relate…	NVD-CWE-noinfo	CVE-2012-3167	cpe:2.3:a:mariadb:mariadb::	5.5.0 5.1.0	5.5.27 5.1.66	2024-11-21 10:40 2012-10-17	Show	GitHub Exploit DB Packet Storm