Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Heap-based Buffer Overflow in MariaDB
Vulnerability Description
MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn the crash into a remote code execution. These conditions require tight control over memory layout which is generally only attainable in a lab environment. This issue is fixed in MariaDB 11.4.10, MariaDB 11.8.6, and MariaDB 12.2.2.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
MariaDB 安全漏洞
Vulnerability Description
MariaDB是MariaDB开源的一个开源的关系型数据库管理系统。 MariaDB 11.4.10之前版本、11.8.6之前版本和12.2.2之前版本存在安全漏洞,该漏洞源于JSON_SCHEMA_VALID函数存在缺陷,可能导致崩溃或远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A