rpm package
suse/mariadb&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
pkg:rpm/suse/mariadb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-13699 | Hig | 7.0 | < 10.6.24-150400.3.43.1 | 10.6.24-150400.3.43.1 | Dec 23, 2025 | MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but | |
| CVE-2024-21096 | — | < 10.6.18-150400.3.33.1 | 10.6.18-150400.3.33.1 | Apr 16, 2024 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where MyS | ||
| CVE-2023-22084 | — | < 10.6.18-150400.3.33.1 | 10.6.18-150400.3.33.1 | Oct 17, 2023 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to c |
- affected < 10.6.24-150400.3.43.1fixed 10.6.24-150400.3.43.1
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but
- CVE-2024-21096Apr 16, 2024affected < 10.6.18-150400.3.33.1fixed 10.6.18-150400.3.33.1
Vulnerability in the MySQL Server product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where MyS
- CVE-2023-22084Oct 17, 2023affected < 10.6.18-150400.3.33.1fixed 10.6.18-150400.3.33.1
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to c