The version of MariaDB installed on the remote host is prior to 10.3.33. It is, therefore, affected by multiple vulnerabilities as referenced in the mdb-10333-rn advisory.

  - This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB.
    Authentication is required to exploit this vulnerability. The specific flaw exists within the processing     of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data     prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to     escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16190.
    (CVE-2022-24052)

  - MariaDB before 10.7.2 allows an application crash because it does not recognize that     SELECT_LEX::nest_level is local to each VIEW. (CVE-2021-46659)

  - This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB.
    Authentication is required to exploit this vulnerability. The specific flaw exists within the processing     of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data     prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to     escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-16191.
    (CVE-2022-24048)

  - This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB.
    Authentication is required to exploit this vulnerability. The specific flaw exists within the processing     of SQL queries. The issue results from the lack of validating the existence of an object prior to     performing operations on the object. An attacker can leverage this vulnerability to escalate privileges     and execute arbitrary code in the context of the service account. Was ZDI-CAN-16207. (CVE-2022-24050)

  - This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB.
    Authentication is required to exploit this vulnerability. The specific flaw exists within the processing     of SQL queries. The issue results from the lack of proper validation of a user-supplied string before     using it as a format specifier. An attacker can leverage this vulnerability to escalate privileges and     execute arbitrary code in the context of the service account. Was ZDI-CAN-16193. (CVE-2022-24051)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Detections

Analytics

MariaDB 10.3.0 < 10.3.33 Multiple Vulnerabilities

high Nessus Plugin ID 157467

Version 1.10

Version 1.9

Version 1.10 Aug 24, 2023, 4:09 AM Plugin requirements Detection Plugin metadata CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") Plugin Feed: 202308240409
Version 1.9 Oct 20, 2022, 7:45 PM CVE Plugin Feed: 202210201945