Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MARIADB_10_3_11.NASL
HistoryNov 09, 2022 - 12:00 a.m.

MariaDB 10.3.0 < 10.3.11 Multiple Vulnerabilities

2022-11-0900:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

The version of MariaDB installed on the remote host is prior to 10.3.11. It is, therefore, affected by multiple vulnerabilities as referenced in the mariadb-10-3-11-release-notes advisory.

  • The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation. (CVE-2016-9843)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. (CVE-2018-3143, CVE-2018-3156, CVE-2018-3251)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. (CVE-2018-3162, CVE-2018-3173, CVE-2018-3200, CVE-2018-3277)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior.
    Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
    (CVE-2018-3174)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. (CVE-2018-3185)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines).
    Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
    (CVE-2018-3282)

  • Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. (CVE-2018-3284)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(167156);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/05");

  script_cve_id(
    "CVE-2016-9843",
    "CVE-2018-3143",
    "CVE-2018-3156",
    "CVE-2018-3162",
    "CVE-2018-3173",
    "CVE-2018-3174",
    "CVE-2018-3185",
    "CVE-2018-3200",
    "CVE-2018-3251",
    "CVE-2018-3277",
    "CVE-2018-3282",
    "CVE-2018-3284"
  );

  script_name(english:"MariaDB 10.3.0 < 10.3.11 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of MariaDB installed on the remote host is prior to 10.3.11. It is, therefore, affected by multiple
vulnerabilities as referenced in the mariadb-10-3-11-release-notes advisory.

  - The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have
    unspecified impact via vectors involving big-endian CRC calculation. (CVE-2016-9843)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions
    that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable
    vulnerability allows low privileged attacker with network access via multiple protocols to compromise
    MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang
    or frequently repeatable crash (complete DOS) of MySQL Server. (CVE-2018-3143, CVE-2018-3156,
    CVE-2018-3251)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions
    that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high
    privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful
    attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable
    crash (complete DOS) of MySQL Server. (CVE-2018-3162, CVE-2018-3173, CVE-2018-3200, CVE-2018-3277)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported
    versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior.
    Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where
    MySQL Server executes to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks may
    significantly impact additional products. Successful attacks of this vulnerability can result in
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
    (CVE-2018-3174)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions
    that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high
    privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful
    attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable
    crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of
    MySQL Server accessible data. (CVE-2018-3185)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines).
    Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12
    and prior. Easily exploitable vulnerability allows high privileged attacker with network access via
    multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server.
    (CVE-2018-3282)

  - Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions
    that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows
    high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful
    attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable
    crash (complete DOS) of MySQL Server. (CVE-2018-3284)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://mariadb.com/kb/en/mariadb-10-3-11-release-notes");
  script_set_attribute(attribute:"solution", value:
"Upgrade to MariaDB version 10.3.11 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-9843");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/12/04");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/11/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/11/09");

  script_set_attribute(attribute:"plugin_type", value:"combined");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:mariadb:mariadb");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("mysql_version.nasl", "mysql_login.nasl", "mariadb_nix_installed.nbin", "mariadb_win_installed.nbin");
  script_require_keys("installed_sw/MariaDB");

  exit(0);
}

include('vcf.inc');

var app_info = vcf::combined_get_app_info(app:'MariaDB');

if (!(app_info.local) && report_paranoia < 2)
  audit(AUDIT_POTENTIAL_VULN, 'MariaDB');

vcf::check_all_backporting(app_info:app_info);

var constraints = [
  { 'min_version' : '10.3', 'fixed_version' : '10.3.11' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
mariadbmariadbcpe:/a:mariadb:mariadb

Related

nessus 34
openvas 27
altlinux 2
fedora 8
slackware 1
mageia 1
debian 1
suse 2
osv 14
amazon 4
ubuntu 2
rosalinux 1
ibm 3
freebsd 1
gentoo 1
veracode 12
alpinelinux 12
mariadbunix 12
cve 12
f5 5
redhatcve 11
ubuntucve 12
prion 12
debiancve 6
redhat 1
photon 2
nessus
nessus
Fedora 28 : 3:mariadb (2018-55b875c1ac)
2019-01-03 00:00:00
Fedora 27 : 3:mariadb (2018-192148f4ff)
2018-11-27 00:00:00
Fedora 29 : 3:mariadb (2018-242f6c1a41)
2019-01-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:0119-1)
2021-04-19 00:00:00
Fedora Update for mariadb FEDORA-2018-242f6c1a41
2019-05-07 00:00:00
Mageia: Security Advisory (MGASA-2018-0469)
2022-01-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package mariadb version 10.3.11-alt1
2018-11-28 00:00:00
Security fix for the ALT Linux 8 package mariadb version 10.1.37-alt1
2018-12-05 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: mariadb-10.3.11-1.fc29
2018-12-22 03:02:42
[SECURITY] Fedora 29 Update: mariadb-10.3.17-1.fc29
2019-08-15 18:52:10
[SECURITY] Fedora 28 Update: mariadb-10.2.19-1.fc28
2018-11-19 01:53:27
slackware
slackware
[slackware-security] mariadb
2018-11-06 04:16:18
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2018-11-27 18:26:11
debian
debian
[SECURITY] [DLA 1570-1] mariadb-10.0 security update
2018-11-07 18:07:25
suse
suse
Security update for mariadb (important)
2019-03-14 00:00:00
Security update for mysql-community-server (important)
2018-10-26 00:18:04
osv
osv
mariadb-10.0 - security update
2018-11-07 00:00:00
CVE-2018-3284
2018-10-17 01:31:29
CVE-2018-3277
2018-10-17 01:31:28
amazon
amazon
Medium: mariadb
2019-04-08 21:30:00
Medium: mysql57
2018-12-06 00:36:00
Medium: mysql56
2018-12-06 00:38:00
ubuntu
ubuntu
MySQL vulnerabilities
2018-10-23 00:00:00
MySQL vulnerabilities
2018-10-29 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2251
2023-10-21 14:46:06
ibm
ibm
Security Bulletin: Multiple security vulnerabilities have been identified in Oracle MySQL, which is a supported topology database of IBM Tivoli Network Manager IP Edition.
2023-06-28 22:08:36
Security Bulletin: IBM Security Guardium is affected by a publicly disclosed vulnerability from Oracle MySQL
2019-03-06 20:10:01
Security Bulletin: IBM API Connect Developer Portal is affected by a vulnerability in Oracle MySQL (CVE-2018-3251)
2019-02-01 22:20:01
freebsd
freebsd
MySQL -- multiple vulnerabilities
2018-10-16 00:00:00
gentoo
gentoo
MariaDB, MySQL: Multiple vulnerabilities
2019-08-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-16 03:22:46
Denial Of Service (DoS)
2019-05-16 03:22:46
Denial Of Service (DoS)
2019-05-16 03:22:42
alpinelinux
alpinelinux
CVE-2018-3284
2018-10-17 01:31:00
CVE-2016-9843
2017-05-23 04:29:00
CVE-2018-3251
2018-10-17 01:31:00
mariadbunix
mariadbunix
CVE-2018-3284
2018-10-17 01:31:00
CVE-2018-3277
2018-10-17 01:31:00
CVE-2018-3173
2018-10-17 01:31:00
cve
cve
CVE-2018-3284
2018-10-17 01:31:00
CVE-2018-3277
2018-10-17 01:31:00
CVE-2018-3251
2018-10-17 01:31:00
f5
f5
K50148721 : MySQL vulnerabilities CVE-2018-3282, CVE-2018-3283, CVE-2018-3284, CVE-2018-3285, and CVE-2018-3286
2018-11-16 00:00:00
K11009429 : MySQL vulnerabilities CVE-2018-3170, CVE-2018-3171, CVE-2018-3173, CVE-2018-3174, and CVE-2018-3182
2018-12-19 00:00:00
K14301401 : MySQL vulnerabilities CVE-2018-3185, CVE-2018-3186, CVE-2018-3187, CVE-2018-3195, and CVE-2018-3200
2018-12-19 00:00:00
redhatcve
redhatcve
CVE-2018-3277
2020-04-02 08:57:23
CVE-2018-3284
2020-04-01 08:04:50
CVE-2018-3251
2018-10-17 21:05:06
ubuntucve
ubuntucve
CVE-2018-3277
2018-10-16 00:00:00
CVE-2018-3284
2018-10-16 00:00:00
CVE-2018-3162
2018-10-16 00:00:00
prion
prion
Design/Logic Flaw
2018-10-17 01:31:00
Code injection
2018-10-17 01:31:00
Code injection
2018-10-17 01:31:00
debiancve
debiancve
CVE-2016-9843
2017-05-23 04:29:00
CVE-2018-3282
2018-10-17 01:31:00
CVE-2018-3174
2018-10-17 01:31:00
redhat
redhat
(RHSA-2019:1258) Moderate: rh-mariadb102-mariadb and rh-mariadb102-galera security and bug fix update
2019-05-21 19:37:40
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0152
2019-04-23 00:00:00
Critical Photon OS Security Update - PHSA-2019-0152
2019-04-23 00:00:00
JSON
Related for MARIADB_10_3_11.NASL
nessus34openvas27altlinux2fedora8slackware1mageia1debian1suse2osv14amazon4ubuntu2rosalinux1ibm3freebsd1gentoo1veracode12alpinelinux12mariadbunix12cve12f55redhatcve11ubuntucve12prion12debiancve6redhat1photon2