BIT-mariadb-2022-27378

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mariadb/BIT-mariadb-2022-27378.json

JSON Data

https://api.test.osv.dev/v1/vulns/BIT-mariadb-2022-27378

Aliases

Published

2024-03-06T11:01:42.606Z

Modified

2025-06-10T12:57:02.502711Z

Summary

[none]

Details

An issue in the component Createtmptable::finalize of MariaDB Server v10.7 and below was discovered to allow attackers to cause a Denial of Service (DoS) via specially crafted SQL statements.

Database specific

{
    "severity": "High",
    "cpes": [
        "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:mariadb:mariadb:10.9:*:*:*:*:*:*:*"
    ]
}

References

Affected packages

Bitnami / mariadb

Package

Name: mariadb
Purl: pkg:bitnami/mariadb

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

10.2.0

Fixed

10.2.44

Introduced

10.3.0

Fixed

10.3.35

Introduced

10.4.0

Fixed

10.4.25

Introduced

10.5.0

Fixed

10.5.16

Introduced

10.6.0

Fixed

10.6.8

Introduced

10.7.0

Fixed

10.7.4

Introduced

10.8.0

Fixed

10.8.3

Introduced

10.9.0

Fixed

10.9.1