Denial of Service Vulnerability in MariaDB Server by MariaDB Corporation
CVE-2023-52969

4.9MEDIUM

Key Information:

Vendor

Mariadb

Status
Mariadb
Vendor
CVE Published:
8 March 2025

What is CVE-2023-52969?

MariaDB Server versions 10.4 to 11.0 are susceptible to a denial of service condition that can lead to unexpected crashes under certain circumstances. This issue may arise when an empty backtrace log is generated, potentially related to specific internal processes within the server. Exploiting this vulnerability can interrupt service availability, impacting database operations.

Affected Version(s)

MariaDB 10.4 < 10.5.*

MariaDB 10.6 < 10.6.*

MariaDB 10.7 < 10.11.*

References

https://jira.mariadb.org/browse/MDEV-32083

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.