CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

Security update for mariadb

This update for mariadb fixes the following issues: CVE-2026-3494: audit plugin comment handling bypass bsc1259176. CVE-2026-34303: mysql: optimizer unspecified vulnerability bsc1266435. CVE-2026-44168: wsrep SST unsafe parameter handling on the donor side bsc1266442. CVE-2026-44170: argument...

9.4CVSS7.1AI score0.00046EPSS

Exploits1References40

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в mariadb-10.3

A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server up to 2021-03-03; and the wsrep patch up to 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in which a database SUP...

9CVSS8.2AI score0.48947EPSS

Exploits8References2

Tenable Nessus•added 2025/11/04 12:0 a.m.•0 views

RHEL 9 : galera and mariadb (RHSA-2025:19584)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19584 advisory. Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more...

6.8CVSS6.6AI score0.01044EPSS

Exploits0References14

Fedora•added 2024/06/18 1:14 a.m.•23 views

[SECURITY] Fedora 39 Update: galera-26.4.18-1.fc39

Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership/wsrep-API repository. For a description of Galera replication engine see...

4.9CVSS5.5AI score0.00287EPSS

Exploits0

Fedora•added 2024/06/10 1:28 a.m.•21 views

[SECURITY] Fedora 40 Update: galera-26.4.18-1.fc40

4.9CVSS5.5AI score0.00287EPSS

Exploits0

OSV•added 2024/03/06 11:7 a.m.•27 views

BIT-MYSQL-CLIENT-2021-27928

A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in which a database...

9CVSS7.5AI score0.48947EPSS

Exploits8References10

Fedora•added 2023/11/26 3:8 a.m.•21 views

[SECURITY] Fedora 37 Update: galera-26.4.16-1.fc37

4.9CVSS5.9AI score0.06984EPSS

Exploits0

Fedora•added 2023/11/26 3:5 a.m.•23 views

[SECURITY] Fedora 38 Update: galera-26.4.16-1.fc38

4.9CVSS5.9AI score0.06984EPSS

Exploits0

OpenVAS•added 2023/11/26 12:0 a.m.•10 views

Fedora: Security Advisory (FEDORA-2023-2eca0baace)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS6AI score0.06984EPSS

Exploits0References4

SUSE CVE•added 2023/02/15 3:44 a.m.•3 views

SUSE CVE-2021-27928

7.2CVSS8.8AI score0.48947EPSS

Exploits8References12

Fedora•added 2022/11/30 1:38 a.m.•30 views

[SECURITY] Fedora 35 Update: galera-26.4.13-1.fc35

7.5CVSS7.1AI score0.00206EPSS

Exploits4

Fedora•added 2022/11/30 1:36 a.m.•22 views

[SECURITY] Fedora 37 Update: galera-26.4.13-1.fc37

7.5CVSS7.1AI score0.00206EPSS

Exploits4

Fedora•added 2022/11/30 1:35 a.m.•30 views

[SECURITY] Fedora 36 Update: galera-26.4.13-1.fc36

7.5CVSS7.1AI score0.00206EPSS

Exploits4

Fedora•added 2022/05/08 1:50 a.m.•52 views

[SECURITY] Fedora 35 Update: galera-26.4.11-1.fc35

Galera is a fast synchronous multi-master wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see http://launchpad.net/wsrep. For a description of Galera replication engine see http://www.codership.com...

7.8CVSS7.4AI score0.0007EPSS

Exploits7

Fedora•added 2022/05/07 5:15 a.m.•42 views

[SECURITY] Fedora 36 Update: galera-26.4.11-1.fc36

7.8CVSS7.4AI score0.0007EPSS

Exploits7

AlmaLinux•added 2022/04/26 1:50 p.m.•82 views

Moderate: mariadb:10.3 security and bug fix update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: mariadb 10.3.32, galera 25.3.34. BZ2050543 Security Fixes: mysql: Server: DML unspecified vulnerability CPU Apr 2021 CVE-2021-21...

7.5CVSS7.2AI score0.0113EPSS

Exploits6References13

OSV•added 2021/07/03 11:3 a.m.•4 views

OESA-2021-1250 mariadb security update

MariaDB turns data into structured information in a wide array of applications, ranging from banking to websites. It is an enhanced, drop-in replacement for MySQL. MariaDB is used because it is fast, scalable and robust, with a rich ecosystem of storage engines, plugins and many other tools make ...

9CVSS8.9AI score0.48947EPSS

Exploits8References3

OSV•added 2021/05/27 8:15 p.m.•1 views

ALPINE-CVE-2020-15180

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in wsrepsstmethod allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and...

9CVSS7.9AI score0.04602EPSS

Exploits0References1

Debian CVE•added 2021/05/27 7:45 p.m.•23 views

CVE-2020-15180

9CVSS8.8AI score0.04602EPSS

Exploits0

CVE•added 2021/05/27 7:45 p.m.•549 views

CVE-2020-15180

The CVE-2020-15180 issue is in MariaDB’s mysql-wsrep component, where lack of input sanitization in wsrep_sst_method enables command injection on Galera cluster nodes. Affected are MariaDB releases prior to 10.1.47, 10.2.34, 10.3.25, 10.4.15, and 10.5.6. The risk includes potential unauthorized c...

9CVSS9.3AI score0.04602EPSS

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by