Lucene search
+L

12 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Mariadb 10.3

MariaDB Server before version 10.7 is vulnerable to Denial of Service attacks. During the execution of the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released properly, allowing local users to trigger a Denial of Service attack due to a deadlock...

5.5CVSS7.3AI score0.00207EPSS
Exploits0References2
veracode
veracode
added 2023/11/28 6:14 a.m.20 views

Sensitive Information Disclosure

org.apache.dolphinscheduler: dolphinscheduler-api is vulnerable to Sensitive Information Disclosure. The vulnerability is due to not removing the sessionId in the log statement of the authenticate method in the org.apache.dolphinscheduler.api.security.impl.AbstractAuthenticator class. This can le...

7.5CVSS7AI score0.01052EPSS
Exploits0References3Affected Software1
susecve
susecve
added 2023/02/15 3:25 a.m.3 views

SUSE CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.9CVSS7.7AI score0.00207EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2022/06/27 12:0 a.m.9 views

The vulnerability of the log_statement_ex method (plugin/server_audit/server_audit.c) of the MariaDB database management system allows a hacker to cause a service failure.

The vulnerability of the logstatementex method in the MariaDB database management system’s plugin/serveraudit/serveraudit.c file is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.8AI score0.00207EPSS
Exploits0References6Affected Software2
mscve
mscve
added 2022/05/28 7:0 a.m.3 views

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/server_audit/server_audit.c method log_statement_ex the held lock lock_bigbuffer is not released correctly which allows local users to trigger a denial of service due to the deadlock.

...

5.5CVSS7.3AI score0.00207EPSS
Exploits0
osv
osv
added 2022/05/25 9:15 p.m.2 views

DEBIAN-CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS6.4AI score0.00207EPSS
Exploits0References1
osv
osv
added 2022/05/25 9:15 p.m.4 views

ALPINE-CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS6.4AI score0.00207EPSS
Exploits0References1
attackerkb
attackerkb
added 2022/05/25 9:15 p.m.4 views

CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS8.7AI score0.00207EPSS
Exploits0References4
prion
prion
added 2022/05/25 9:15 p.m.30 views

Design/Logic Flaw

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

2.1CVSS5.9AI score0.00207EPSS
Exploits0References3Affected Software1
redhat
redhat
added 2022/03/22 12:30 p.m.5 views

mariadb: DoS due to improper locking due to unreleased lock in plugin/server_audit/server_audit.c

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS7.3AI score0.00207EPSS
Exploits0References4
prion
prion
added 2018/02/12 7:29 p.m.15 views

Design/Logic Flaw

In audioserver, there is an out-of-bounds write due to a log statement using %s with an array that may not be NULL terminated. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Version...

7.8CVSS6.9AI score0.00833EPSS
Exploits0References2Affected Software1
osv
osv
added 2018/02/12 7:29 p.m.5 views

CVE-2017-13232

In audioserver, there is an out-of-bounds write due to a log statement using %s with an array that may not be NULL terminated. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Version...

7.5CVSS5.9AI score0.00833EPSS
Exploits0References2
Rows per page
Query Builder