Xtradb Cluster Percona Xtradb Cluster

Do you want an email whenever new security vulnerabilities are reported in Percona Xtradb Cluster?

By the Year

In 2021 there have been 1 vulnerability in Percona Xtradb Cluster with an average score of 9.0 out of ten. Last year Xtradb Cluster had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Xtradb Cluster in 2021 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2021 is greater by 0.90.

Year Vulnerabilities Average Score
2021 1 9.00
2020 1 8.10
2019 0 0.00
2018 0 0.00

It may take a day or so for new Xtradb Cluster vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Percona Xtradb Cluster Security Vulnerabilities

A flaw was found in the mysql-wsrep component of mariadb

CVE-2020-15180 9 - Critical - May 27, 2021

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.

Improper Input Validation

An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41.2

CVE-2020-10996 8.1 - High - April 27, 2020

An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41.2. A bundled script inadvertently sets a static transition_key for SST processes in place of the random key expected.

Information Disclosure

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Percona Xtradb Cluster or by Percona? Click the Watch button to subscribe.