Lucene search

[email protected]CVE-2022-32089

HistoryJul 01, 2022 - 8:15 p.m.

CVE-2022-32089

2022-07-0120:15:08

[email protected]

web.nvd.nist.gov

122

mariadb

v10.5

v10.7

segmentation fault

cve-2022-32089

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

67.9%

JSON

MariaDB v10.5 to v10.7 was discovered to contain a segmentation fault via the component st_select_lex_unit::exclude_level.

Affected configurations

NVD

Node

mariadbmariadbRange10.4.0–10.4.26

mariadbmariadbRange10.5.0–10.5.17

mariadbmariadbRange10.6.0–10.6.9

mariadbmariadbRange10.7.0–10.7.5

mariadbmariadbRange10.8.0–10.8.4

mariadbmariadbRange10.9.0–10.9.2

Node

fedoraprojectfedoraMatch35

fedoraprojectfedoraMatch36

fedoraprojectfedoraMatch37

CPENameOperatorVersion
mariadb:mariadbmariadblt10.4.26
mariadb:mariadbmariadblt10.5.17
mariadb:mariadbmariadblt10.6.9
mariadb:mariadbmariadblt10.7.5
mariadb:mariadbmariadblt10.8.4
mariadb:mariadbmariadblt10.9.2

CPE	Name	Operator	Version
mariadb:mariadb	mariadb	lt	10.4.26
mariadb:mariadb	mariadb	lt	10.5.17
mariadb:mariadb	mariadb	lt	10.6.9
mariadb:mariadb	mariadb	lt	10.7.5
mariadb:mariadb	mariadb	lt	10.8.4
mariadb:mariadb	mariadb	lt	10.9.2