Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MARIADB_10_6_5.NASLHistoryFeb 09, 2022 - 12:00 a.m.
MariaDB 10.6.0 < 10.6.5 Multiple Vulnerabilities
2022-02-0900:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
36
mariadb
version 10.6.0
vulnerabilities
cve-2021-46662
cve-2021-46667
security advisory
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
35.0%
The version of MariaDB installed on the remote host is prior to 10.6.5. It is, therefore, affected by multiple vulnerabilities as referenced in the mdb-1065-rn advisory.
-
MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in conjunction with a nested subquery. (CVE-2021-46662)
-
MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash. (CVE-2021-46667)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(157858);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/08/23");
script_cve_id(
"CVE-2021-46662",
"CVE-2021-46667",
"CVE-2022-27385",
"CVE-2022-31624"
);
script_name(english:"MariaDB 10.6.0 < 10.6.5 Multiple Vulnerabilities");
script_set_attribute(attribute:"synopsis", value:
"The remote database server is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of MariaDB installed on the remote host is prior to 10.6.5. It is, therefore, affected by multiple
vulnerabilities as referenced in the mdb-1065-rn advisory.
- MariaDB through 10.5.9 allows a set_var.cc application crash via certain uses of an UPDATE statement in
conjunction with a nested subquery. (CVE-2021-46662)
- MariaDB before 10.6.5 has a sql_lex.cc integer overflow, leading to an application crash. (CVE-2021-46667)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://mariadb.com/kb/en/mariadb-10-6-5-release-notes");
script_set_attribute(attribute:"solution", value:
"Upgrade to MariaDB version 10.6.5 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-27385");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/02/01");
script_set_attribute(attribute:"patch_publication_date", value:"2022/02/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/09");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/a:mariadb:mariadb");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Databases");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("mariadb_nix_installed.nbin", "mariadb_win_installed.nbin", "mysql_version.nasl", "mysql_login.nasl");
script_require_keys("Settings/ParanoidReport");
script_require_ports("Services/mysql", 3306);
exit(0);
}
include('vcf.inc');
var app_info = vcf::combined_get_app_info(app:'MariaDB');
if (!(app_info.local) && report_paranoia < 2)
audit(AUDIT_POTENTIAL_VULN, 'MariaDB');
vcf::check_all_backporting(app_info:app_info);
var constraints = [
{ 'min_version' : '10.6', 'fixed_version' : '10.6.5' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Related
nessus
nessus
MariaDB 10.5.0 < 10.5.13 A Vulnerability
2021-11-06 00:00:00
MariaDB 10.4.0 < 10.4.22 Multiple Vulnerabilities
2021-11-06 00:00:00
MariaDB 10.3.0 < 10.3.32 A Vulnerability
2021-11-09 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for mariadb (EulerOS-SA-2023-1274)
2023-01-31 00:00:00
MariaDB DoS Vulnerability (MDEV-26415) - Windows
2022-04-13 00:00:00
MariaDB DoS Vulnerability (MDEV-26415) - Linux
2022-04-13 00:00:00
osv
osv
BIT-mysql-client-2022-27385
2024-03-06 11:02:27
CVE-2022-27385
2022-04-12 20:15:08
BIT-mariadb-2022-31624
2024-03-06 10:57:43
veracode
veracode
Denial Of Service (DoS)
2022-06-03 14:38:31
Denial Of Service (DoS)
2022-06-22 07:29:50
Integer Overflow
2022-03-19 09:01:40
cbl_mariner
cbl_mariner
CVE-2022-31624 affecting package mariadb for versions less than 10.6.9-1
2022-09-07 19:51:44
CVE-2022-27385 affecting package mariadb 10.3.34-1
2022-06-15 17:03:27
CVE-2022-31624 affecting package mariadb 10.3.34-1
2022-06-15 17:03:27
cve
cve
cvelist
cvelist
redhat
redhat
(RHSA-2022:4818) Moderate: mariadb:10.3 security and bug fix update
2022-05-31 09:59:46
(RHSA-2022:1556) Moderate: mariadb:10.3 security and bug fix update
2022-04-26 13:50:43
mariadbunix
mariadbunix
ubuntucve
ubuntucve
debiancve
debiancve
cnvd
cnvd
MariaDB Server Denial of Service Vulnerability (CNVD-2022-65345)
2022-05-26 00:00:00
MariaDB Denial of Service Vulnerability (CNVD-2022-65006)
2022-04-14 00:00:00
MariaDB Denial of Service Vulnerability (CNVD-2022-65012)
2022-02-10 00:00:00
alpinelinux
alpinelinux
nvd
nvd
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2022-04-12 20:15:00
Design/Logic Flaw
2022-05-25 21:15:00
Design/Logic Flaw
2022-02-01 02:15:00
rocky
rocky
mariadb:10.5 security, bug fix, and enhancement update
2022-04-26 13:50:46
mariadb:10.3 security and bug fix update
2022-04-26 13:50:43
almalinux
almalinux
Moderate: mariadb:10.5 security, bug fix, and enhancement update
2022-04-26 13:50:46
Moderate: mariadb:10.3 security and bug fix update
2022-04-26 13:50:43
amazon
amazon
Medium: mariadb
2023-05-25 17:41:00
oraclelinux
oraclelinux
mariadb:10.5 security, bug fix, and enhancement update
2022-05-03 00:00:00
mariadb:10.3 security and bug fix update
2022-04-28 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-3.0-0361
2022-02-14 00:00:00
Critical Photon OS Security Update - PHSA-2022-0439
2022-02-11 00:00:00
Important Photon OS Security Update - PHSA-2022-0469
2022-02-09 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2252
2023-10-21 15:06:32
Advisory ROSA-SA-2023-2253
2023-10-21 15:31:29
Advisory ROSA-SA-2023-2254
2023-10-21 15:52:51
gentoo
gentoo
MariaDB: Multiple Vulnerabilities
2024-05-08 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: mariadb-10.5.15-1.fc34
2022-05-08 02:04:10
[SECURITY] Fedora 36 Update: galera-26.4.11-1.fc36
2022-05-07 05:15:12
[SECURITY] Fedora 36 Update: mariadb-10.5.15-1.fc36
2022-05-07 05:15:12
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
35.0%
Related for MARIADB_10_6_5.NASL