CVE-2023-52971

All Frameworks › MariaDB › CWE-1038 › CVE-2023-52971

CVE-2023-52971

State: PUBLISHED · Published: 2025-03-08 · Updated: 2025-05-12 · Assigner: mitre

Description

MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan.

CWE

CWE-1038 — CWE-1038 Insecure Automated Optimizations

Affected

MariaDB / MariaDB — v=10.10 <10.11.* [affected]; v=11.0 <11.4.* [affected]

CVSS

3.1 score=4.9 severity=MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

References

https://jira.mariadb.org/browse/MDEV-32084

Source

cvelistV5-main/cves/2023/52xxx/CVE-2023-52971.json