Percona Xtradb Cluster
By the Year
In 2021 there have been 1 vulnerability in Percona Xtradb Cluster with an average score of 9.0 out of ten. Last year Xtradb Cluster had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Xtradb Cluster in 2021 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2021 is greater by 0.90.
It may take a day or so for new Xtradb Cluster vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Percona Xtradb Cluster Security Vulnerabilities
A flaw was found in the mysql-wsrep component of mariadb
9 - Critical
- May 27, 2021
A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.
Improper Input Validation
An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41.2
8.1 - High
- April 27, 2020
An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41.2. A bundled script inadvertently sets a static transition_key for SST processes in place of the random key expected.