Vulnerabilidades em MariaDB
20 resultadosCVE-2026-32710HIGHHeap-based Buffer Overflow in MariaDBEPSS 0.9%CVE-2022-24052HIGHMariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to eEPSS 0.6%CVE-2022-24048HIGHMariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to EPSS 0.6%CVE-2022-24051HIGHMariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate priviEPSS 0.6%CVE-2022-24050HIGHMariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privEPSS 0.6%CVE-2026-48163HIGHMariaDB: wsrep SST unsafe parameter handling on the donor side (rsync)EPSS 0.5%CVE-2026-49261CRITICALMariaDB server has unsafe parameter handling in `wsrep_notify_cmd`EPSS 0.4%CVE-2026-48165HIGHMariaDB: unsafe usage of `wsrep_sst_receive_address` values on the joiner sideEPSS 0.4%CVE-2023-52971MEDIUMMariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan.EPSS 0.4%CVE-2023-52969MEDIUMMariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through 11.0.* can sometimes crash with an empty bacEPSS 0.4%CVE-2023-52970MEDIUMMariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through 11.4.* crashes in Item_EPSS 0.4%CVE-2025-13699HIGHMariaDB mariadb-dump Utility Directory Traversal Remote Code Execution VulnerabilityEPSS 0.4%CVE-2026-44170MEDIUMMariaDB: Argument injection in CONNECT REST Xcurl on Windows via unsanitized URLEPSS 0.4%CVE-2023-52968MEDIUMMariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0 before 11.0.5, and 11.EPSS 0.4%CVE-2026-44168HIGHMariaDB: wsrep SST unsafe parameter handling on the donor sideEPSS 0.4%CVE-2026-44172MEDIUMMariaDB: mysql_real_escape_string() incorrectly handled big5EPSS 0.3%CVE-2026-35549MEDIUMAn issue was discovered in MariaDB Server before 11.4.10, 11.5.x through 11.8.x before 11.8.6, and 12.x before 12.2.2. If the caching_sha2_pEPSS 0.3%CVE-2026-44169MEDIUMMariaDB: Authorization bypass in role-based routine-level privilege check exposes stored routine definitionsEPSS 0.2%CVE-2026-44173MEDIUMMariaDB: FILE privilege was not checked for subqueries in the FROM clauseEPSS 0.2%CVE-2026-44171MEDIUMMariaDB: path traversal in mbstreamEPSS 0.1%