Search CVE reports

21 – 30 of 1786 results

Detailed view

Sort by:

CVE-2026-21948

Medium priority

Some fixes available 4 of 15

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows...

11 affected packages

mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mysql-5.5	Not in release	Not in release	—	—
mysql-5.7	Not in release	Not in release	—	Ignored
mysql-8.0	Fixed	Fixed	Fixed	—
mysql-8.4	Not in release	Not in release	—	—
mariadb	Needs evaluation	Not in release	—	—
mariadb-10.0	Not in release	Not in release	—	—
mariadb-10.1	Not in release	Not in release	—	Needs evaluation
mariadb-10.3	Not in release	Not in release	Ignored	—
mariadb-10.6	Not in release	Needs evaluation	—	—
percona-xtradb-cluster-5.6	Not in release	Not in release	—	—
percona-server-5.6	Not in release	Not in release	—	—

CVE-2026-21941

Medium priority

Some fixes available 4 of 15

11 affected packages

mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mysql-5.5	Not in release	Not in release	—	—
mysql-5.7	Not in release	Not in release	—	Ignored
mysql-8.0	Fixed	Fixed	Fixed	—
mysql-8.4	Not in release	Not in release	—	—
mariadb	Needs evaluation	Not in release	—	—
mariadb-10.0	Not in release	Not in release	—	—
mariadb-10.1	Not in release	Not in release	—	Needs evaluation
mariadb-10.3	Not in release	Not in release	Ignored	—
mariadb-10.6	Not in release	Needs evaluation	—	—
percona-xtradb-cluster-5.6	Not in release	Not in release	—	—
percona-server-5.6	Not in release	Not in release	—	—

CVE-2026-21937

Medium priority

Some fixes available 4 of 15

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged...

11 affected packages

mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mysql-5.5	Not in release	Not in release	—	—
mysql-5.7	Not in release	Not in release	—	Ignored
mysql-8.0	Fixed	Fixed	Fixed	—
mysql-8.4	Not in release	Not in release	—	—
mariadb	Needs evaluation	Not in release	—	—
mariadb-10.0	Not in release	Not in release	—	—
mariadb-10.1	Not in release	Not in release	—	Needs evaluation
mariadb-10.3	Not in release	Not in release	Ignored	—
mariadb-10.6	Not in release	Needs evaluation	—	—
percona-xtradb-cluster-5.6	Not in release	Not in release	—	—
percona-server-5.6	Not in release	Not in release	—	—

CVE-2026-21936

Medium priority

Some fixes available 4 of 15

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.44, 8.4.0-8.4.7 and 9.0.0-9.5.0. Easily exploitable vulnerability allows high privileged attacker...

11 affected packages

mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mysql-5.5	Not in release	Not in release	—	—
mysql-5.7	Not in release	Not in release	—	Ignored
mysql-8.0	Fixed	Fixed	Fixed	—
mysql-8.4	Not in release	Not in release	—	—
mariadb	Needs evaluation	Not in release	—	—
mariadb-10.0	Not in release	Not in release	—	—
mariadb-10.1	Not in release	Not in release	—	Needs evaluation
mariadb-10.3	Not in release	Not in release	Ignored	—
mariadb-10.6	Not in release	Needs evaluation	—	—
percona-xtradb-cluster-5.6	Not in release	Not in release	—	—
percona-server-5.6	Not in release	Not in release	—	—

CVE-2026-21929

Medium priority

Needs evaluation

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 9.0.0-9.5.0. Difficult to exploit vulnerability allows low privileged attacker with network access...

11 affected packages

mysql-5.5, mysql-5.7, mysql-8.0, mysql-8.4, mariadb...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mysql-5.5	Not in release	Not in release	—	—
mysql-5.7	Not in release	Not in release	—	Ignored
mysql-8.0	Not affected	Not affected	Not affected	—
mysql-8.4	Not in release	Not in release	—	—
mariadb	Needs evaluation	Not in release	—	—
mariadb-10.0	Not in release	Not in release	—	—
mariadb-10.1	Not in release	Not in release	—	Needs evaluation
mariadb-10.3	Not in release	Not in release	Ignored	—
mariadb-10.6	Not in release	Needs evaluation	—	—
percona-xtradb-cluster-5.6	Not in release	Not in release	—	—
percona-server-5.6	Not in release	Not in release	—	—

CVE-2026-21265

Medium priority

Ignored

Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot...

3 affected packages

secureboot-db, shim-signed, shim

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
secureboot-db	Not affected	Not affected	Not affected	Not affected
shim-signed	Not affected	Not affected	Not affected	Not affected
shim	Not affected	Not affected	Not affected	Not affected

CVE-2026-22185

Medium priority

Vulnerable

OpenLDAP Lightning Memory-Mapped Database (LMDB) versions up to and including 0.9.14, prior to commit 8e1fda8, contain a heap buffer underflow in the readline() function of mdb_load. When processing malformed input containing an...

2 affected packages

openldap, lmdb

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
openldap	Not affected	Not affected	Not affected	Not affected
lmdb	Vulnerable	Vulnerable	Vulnerable	Vulnerable

CVE-2025-13699

Medium priority

Needs evaluation

MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump...

1 affected package

mariadb

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mariadb	Needs evaluation	Not in release	—	—

CVE-2025-14847

High priority

Vulnerable

Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an unauthenticated client. This issue affects all MongoDB Server v7.0 prior to 7.0.28 versions, MongoDB Server v8.0...

1 affected package

mongodb

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mongodb	Not in release	Not in release	Vulnerable	Vulnerable

CVE-2025-14345

Medium priority

Vulnerable

A post-authentication flaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under specific conditions which are not predictable and exist for a...

1 affected package

mongodb

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
mongodb	Not in release	Not in release	Vulnerable	Vulnerable

Export to JSON

Results by page: