Percona Xtradb Cluster — known CVE vulnerabilities
Every CVE whose affected-product data names Percona Xtradb Cluster, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-15180 — CVSS 9.0 (critical): A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection…
CVE-2017-15365 — CVSS 8.8 (high): sql/event_data_objects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x…
CVE-2020-10996 — CVSS 8.1 (high): An issue was discovered in Percona XtraDB Cluster before 5.7.28-31.41.2. A bundled script inadvertently sets a static transition_key for…
CVE-2016-6663 — CVSS 7.0 (high): Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x…
CVE-2016-6664 — CVSS 7.0 (high): mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2…