SecAlerts
CVE ListPricingSign Up
MariaDB logo

MariaDB

Security Risk Profile

45
/100
medium

Security Risk Score

Comprehensive risk assessment based on 426 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from January 20, 2005 to present

426
Total CVEs
84
Critical+High
1
Exploited
13
Unpatched

Threat Assessment

Avg CVSS
5.4
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
13
Critical/High
Risk Level
45/100
medium
⚠️ 1 Active Exploits 1 Zero-Days📈 1 in Last 30 Days

Severity Distribution

Critical
9
High
75
Medium
297
Low
42

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
6

Age Distribution

Common Weaknesses (CWE)

1
Use After Free
16
2
Buffer Overflow
14
3
SQL Injection
10
4
Input Validation
5
5
Code Injection
4

Most Affected Products

1. MariaDB MariaDB1525
2. redhat/mariadb844
3. Oracle MySQL741
4. Canonical Ubuntu Linux633
5. redhat Enterprise Linux Eus485

Recent Vulnerabilities

See more →
https://reddit.com/r/cybersecurity/comments/1t5tk68/cve202632710_mariadb_json_schema_valid_heap/
unknown

CVE-2026-32710 MariaDB JSON_SCHEMA_VALID heap buffer overflow leading to RCE

5/6/2026🔧 No Patch
CVE-2026-35549
CVSS 6.5medium
4/3/2026🔧 No Patch
CVE-2026-32710
CVSS 9.9EPSS 0%critical

Heap-based Buffer Overflow in MariaDB

3/20/2026🔧 No Patch
CVE-2026-3494
CVSS 5.3EPSS 0%medium

MariaDB Server Audit Plugin Comment Handling Bypass

3/3/2026
https://www.bleepingcomputer.com/news/security/zeroday-cloud-hacking-event-awards-320-0000-for-11-zero-days/
unknown

Zeroday Cloud hacking event awards $320,0000 for 11 zero days

12/17/2025⚠ Exploited⚡ Zero-Day🔧 No Patch
CVE-2025-13699
CVSS 7.0high

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

11/28/2025
ZDI-25-1025
CVSS 7.0high

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

11/27/2025🔧 No Patch
ZDI-CAN-27000
CVSS 7.0high

ZDI-25-1025: MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability

11/27/2025🔧 No Patch
CVE-2025-56404
CVSS 7.5high
9/10/2025🔧 No Patch
REDHAT-BUG-2350918
CVSS 4.0medium
3/8/2025🔧 No Patch

Monitor MariaDB in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.