Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
MariaDB Server Number Of NVD 399 CRITICAL 3 HIGH 70 MEDIUM 277 LOW 49
URL https://mariadb.org/
Explanation It is a relational database management system (RDBMS) derived from MySQL.
Paid support is available for MariaDB Enterprise Server.
Since many Linux distributions have replaced MySQL with MariaDB, it is now easier to use on Linux.

It has become one of the open source combinations called LAMP (Linux, Apache, MySQL [MariaDB], PHP).
Tag
  • 商用ライセンス有り
  • オープンソース
  • GPL v2
Add Information URL
No Type Name URL
1 https://downloads.mariadb.org/mariadb/+releases/
2 https://mariadb.com/wp-content/uploads/2019/07/mariadb-engineering-policies-v2-01_policy_1036.pdf
3 https://mariadb.com/downloads/
4 https://mariadb.com/kb/en/mariadb-server/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
71 MariaDB 11.2 11.2.6 Nov. 1, 2024 June 20, 2023 0 0 0 0
72 MariaDB 11.1 11.1.6 Aug. 8, 2024 March 27, 2023 0 0 0 0
73 MariaDB 11.0 11.0.6 May 16, 2024 Dec. 27, 2022 June 30, 2024 0 0 0 0
74 MariaDB 10.11 10.11.13 May 22, 2025 Sept. 26, 2022 Feb. 28, 2028 0 0 1 0
75 MariaDB 10.10 10.10.7 Nov. 13, 2023 June 21, 2022 Nov. 30, 2023 0 0 1 0
76 MariaDB 10.9 10.9.8 Aug. 14, 2023 March 23, 2022 0 7 2 0
77 MariaDB 10.8 10.8.8 May 10, 2023 Dec. 21, 2021 0 14 2 0
78 MariaDB 10.7 10.7.8 Feb. 6, 2023 Sept. 17, 2021 Feb. 28, 2023 0 40 10 0
79 MariaDB 10.6 10.6.22 May 6, 2025 April 26, 2021 June 30, 2026 0 41 20 0
80 MariaDB 10.5 10.5.29 May 6, 2025 Dec. 3, 2019 June 24, 2025 1 43 30 0
81 MariaDB 10.4 10.4.34 May 16, 2024 July 2, 2019 July 2, 2022 1 44 46 2
82 MariaDB 10.3 10.3.39 May 10, 2023 May 25, 2018 May 25, 2023 2 35 63 3
83 MariaDB 10.2 10.2.44 May 20, 2022 May 23, 2017 May 23, 2022 2 31 99 6
84 MariaDB 10.1 10.1.48 Nov. 3, 2020 Oct. 17, 2015 Oct. 17, 2020 3 19 115 21
85 MariaDB 5.3 5.3.9 Jan. 1, 2000 0 10 23 1
86 MariaDB 5.2 5.2.9 Jan. 1, 2000 0 10 23 1
87 MariaDB 5.1 5.1.67 Jan. 1, 2000 0 13 34 5
88 MariaDB 2.5 2.5.1 Jan. 1, 2000 0 10 7 1
89 MariaDB 2.4 2.4.2 Jan. 1, 2000 0 10 7 1
90 MariaDB 2.3 2.3.1 Jan. 1, 2000 0 10 7 1
91 MariaDB 2.2 2.2.0 Jan. 1, 2000 0 10 7 1
92 MariaDB 2.1 2.13.0 Jan. 1, 2000 0 11 7 1
93 MariaDB 2.0 2.0.5 Jan. 1, 2000 0 10 7 1
94 MariaDB 1.0 1.0.2 Jan. 1, 2000 0 10 7 1
95 MariaDB 0.7 0.7.0 Jan. 1, 2000 0 10 7 1
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
71 7.2
6.5 		HIGH
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability… NVD-CWE-noinfo
CVE-2021-2144 cpe:2.3:a:mariadb:mariadb:*:* 10.1.0
10.2.0
10.3.0
10.4.0
5.5.0







10.1.42
10.2.28
10.3.19
10.4.9
5.5.66 		2024-11-21 15:02
2021-04-23 		Show GitHub Exploit DB Packet Storm
72 7.2
9.0 		HIGH
Network 		A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch t… CWE-94
Code Injection 		CVE-2021-27928 cpe:2.3:a:mariadb:mariadb:*:* 10.4
10.3
10.2
10.5





10.4.18
10.3.28
10.2.37
10.5.9 		2024-11-21 14:58
2021-03-19 		Show GitHub Exploit DB Packet Storm
73 4.3
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Information Schema). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerabi… NVD-CWE-noinfo
CVE-2021-2032 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0 10.0.11 2024-11-21 15:02
2021-01-21 		Show GitHub Exploit DB Packet Storm
74 4.4
6.3 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit v… NVD-CWE-noinfo
CVE-2021-2022 cpe:2.3:a:mariadb:mariadb:*:* 10.1.0
10.2.0
10.3.0
10.4.0
10.5.0







10.1.46
10.2.33
10.3.24
10.4.14
10.5.5 		2024-11-21 15:02
2021-01-21 		Show GitHub Exploit DB Packet Storm
75 5.9
7.1 		MEDIUM
Network 		Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows… NVD-CWE-noinfo
CVE-2021-2011 cpe:2.3:a:mariadb:mariadb:*:* 10.0.0
10.1.0
10.2.0
5.5.0





10.0.35
10.1.33
10.2.15
5.5.61 		2024-11-21 15:02
2021-01-21 		Show GitHub Exploit DB Packet Storm
76 3.7
4.3 		LOW
Network 		Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vu… NVD-CWE-noinfo
CVE-2021-2007 cpe:2.3:a:mariadb:mariadb:*:* 10.2.0
10.3.0
10.4.0
5.5.0
10.1.0







10.2.26
10.3.17
10.4.7
5.5.65
10.1.41 		2024-11-21 15:02
2021-01-21 		Show GitHub Exploit DB Packet Storm
77 7.0
4.4 		HIGH
Local 		With MariaDB running on Windows, when local clients connect to the server over named pipes, it's possible for an unprivileged user with an ability to run code on the server machine to intercept the n… NVD-CWE-Other
CVE-2020-28912 cpe:2.3:a:mariadb:mariadb:*:*
10.2.0
10.3.0
10.4.0
10.5.0







10.1.48
10.2.35
10.3.26
10.4.16
10.5.7 		2024-11-21 14:23
2020-12-25 		Show GitHub Exploit DB Packet Storm
78 4.9
6.8 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploi… NVD-CWE-noinfo
CVE-2020-14812 cpe:2.3:a:mariadb:mariadb:*:* 10.5.0
10.4.0
10.3.0
10.2.0
10.1.0







10.5.7
10.4.16
10.3.26
10.2.35
10.1.48 		2024-11-21 14:04
2020-10-22 		Show GitHub Exploit DB Packet Storm
79 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability al… NVD-CWE-noinfo
CVE-2020-14789 cpe:2.3:a:mariadb:mariadb:*:* 10.5.0
10.4.0
10.3.0
10.2.0





10.5.7
10.4.16
10.3.26
10.2.35 		2024-11-21 14:04
2020-10-22 		Show GitHub Exploit DB Packet Storm
80 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows … NVD-CWE-noinfo
CVE-2020-14776 cpe:2.3:a:mariadb:mariadb:*:* 10.5.0
10.4.0
10.3.0
10.2.0





10.5.7
10.4.16
10.3.26
10.2.35 		2024-11-21 14:04
2020-10-22 		Show GitHub Exploit DB Packet Storm