CVE-2022-47015

Published Jan 20, 2023

Last updated 5 months ago

CVSS medium 6.5

Overview

Description: MariaDB Server before 10.3.34 thru 10.9.3 is vulnerable to Denial of Service. It is possible for function spider_db_mbase::print_warnings to dereference a null pointer.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

Weaknesses

nvd@nist.gov: CWE-476

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73B9E2B1-8409-466F-BB25-E170B8575FE0",
            "versionEndExcluding": "10.3.39",
            "versionStartIncluding": "10.3.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74BDE25F-E554-4044-92A9-9754344BD1E6",
            "versionEndExcluding": "10.4.29",
            "versionStartIncluding": "10.4.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "241EBBC7-DA8C-4AAF-9FA1-CEA109CBC302",
            "versionEndExcluding": "10.5.20",
            "versionStartIncluding": "10.5.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8DA6B06-28C2-4FD2-B17A-2082105E62B9",
            "versionEndExcluding": "10.6.13",
            "versionStartIncluding": "10.6.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0452672D-238A-427F-8B97-DE1A422112AD",
            "versionEndExcluding": "10.8.8",
            "versionStartIncluding": "10.8.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06CF2204-324A-48FE-B4C3-D8CE3F9D1B9D",
            "versionEndExcluding": "10.9.6",
            "versionStartIncluding": "10.9.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "658EEEF9-02F9-44A8-98C7-AE886697268D",
            "versionEndExcluding": "10.10.4",
            "versionStartIncluding": "10.10.0"
          },
          {
            "criteria": "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "786AA9E0-3E06-42AD-A963-A5C0DA90F9C2",
            "versionEndExcluding": "10.11.3",
            "versionStartIncluding": "10.11.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References