By the Year
In 2023 there have been 1 vulnerability in MariaDB Maxscale with an average score of 6.5 out of ten. Maxscale did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2023 as compared to last year.
It may take a day or so for new Maxscale vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent MariaDB Maxscale Security Vulnerabilities
An issue was discovered in MariaDB MaxScale before 23.02.3
6.5 - Medium
- August 14, 2023
An issue was discovered in MariaDB MaxScale before 23.02.3. A user enters an encrypted password on a "maxctrl create service" command line, but this password is then stored in cleartext in the resulting .cnf file under /var/lib/maxscale/maxscale.cnf.d. The fixed versions are 2.5.28, 6.4.9, 22.08.8, and 23.02.3.
Cleartext Storage of Sensitive Information