| VID |
25300 |
| Severity |
40 |
| Port |
3306 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The version of MariaDB running on the remote host is 10.0.x prior to 10.0.37. It is, therefore, affected by multiple vulnerabilities.
* References:
https://lists.askmonty.org/cgi-bin/mailman/listinfo/announce
https://mariadb.org/mariadb-10-0-37-now-available/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3282
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9843
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3174
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3143
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3156
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3251
https://jira.mariadb.org/browse/MDEV-17533
https://jira.mariadb.org/browse/MDEV-17532
https://jira.mariadb.org/browse/MDEV-17531
https://jira.mariadb.org/browse/MDEV-16465
https://jira.mariadb.org/browse/MDEV-12547
https://jira.mariadb.org/browse/MDEV-16865
https://mariadb.com/kb/en/mdb-10037-rn
* Platforms Affected:
MariaDB versions 10.0.x prior to 10.0.37
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of MariaDB (10.0.37 or later), available from the MariaDB Web site at https://downloads.mariadb.org/ |
| Related URL |
CVE-2016-9843,CVE-2018-3143,CVE-2018-3156,CVE-2018-3174,CVE-2018-3251,CVE-2018-3282 (CVE) |
| Related URL |
95131,105600,105610,105612 (SecurityFocus) |
| Related URL |
(ISS) |
|
