BIT-MARIADB-MIN-2020-2760

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

BIT-MARIADB-MIN-2020-14812

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Locking. Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

BIT-MARIADB-MIN-2020-14789

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

BIT-MARIADB-MIN-2020-14776

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

BIT-MARIADB-MIN-2020-14765

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves the improper assignment of permissions to a critical resource. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

Vulnerability of the Server:Options component of the Oracle MySQL Server database management system and the Cluster:General component of the MySQL Cluster database management system, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Server:Options component of the Oracle MySQL Server database management system and the Cluster:General component of the MySQL Cluster database management system is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can...

CVE-2021-29004

rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an attacker may successfully upload a webshell to the server and access it remotely...

CVE-2020-15051

An issue was discovered in Artica Proxy before 4.30.000000. Stored XSS exists via the Server Domain Name, Your Email Address, Group Name, MYSQL Server, Database, MYSQL Username, Group Name, and Task Description fields...

CVE-2019-1010259

SaltStack Salt 2018.3, 2019.2 is affected by: SQL Injection. The impact is: An attacker could escalate privileges on MySQL server deployed by cloud provider. It leads to RCE. The component is: The mysql.userchpass function from the MySQL module for Salt. The attack vector is: specially crafted...

Alibaba Cloud Linux 3 : 0014: mariadb:10.3 (ALINUX3-SA-2021:0014)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0014 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-2938: Vulnerability in the MySQL...

Alibaba Cloud Linux 3 : 0107: mysql:8.0 (ALINUX3-SA-2022:0107)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0107 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-2420: Vulnerability in the MySQL...

Alibaba Cloud Linux 3 : 0022: mariadb:10.5 (ALINUX3-SA-2025:0022)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0022 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-22084: Vulnerability in the MySQL...

K000151278: MySQL vulnerability CVE-2025-21579

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...

MariaDB 10.5.0 < 10.5.29 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.5.29. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.5.29 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected are...

MariaDB 10.11.0 < 10.11.12 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.11.12. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.11.12 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected a...

MariaDB 11.4.0 < 11.4.6 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 11.4.6. It is, therefore, affected by multiple vulnerabilities as referenced in the 11.4.6 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected are...

MariaDB 10.6.0 < 10.6.22 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 10.6.22. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.6.22 advisory. - Vulnerability in the MySQL Client product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected are...

ROS-20250505-03

Vulnerability in MySQL Server component is related to improper order of behavior. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Vulnerability of the MySQL Server component: This component is part of the MySQL Database Management System, and its failure can lead to service interruptions for attackers.

The vulnerability of the MySQL Server component, which is part of the MySQL Database Management System and MySQL Cluster, involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...