# Security Vulnerabilities (CVE) Fixed in MariaDB {% hint style="info" %} This page is about security vulnerabilities fixed in MariaDB products. If you are looking for information on securing your MariaDB installation, see [Securing MariaDB](https://mariadb.com/docs/server/security/securing-mariadb). {% endhint %} {% hint style="danger" %} Sensitive security issues can be reported on or sent directly to the persons responsible for MariaDB security: security \[AT] mariadb (dot) org. {% endhint %} ## What is a CVE? **Common Vulnerabilities and Exposures** (CVE) relate to flaws "in a software, firmware, hardware, or service component resulting from a weakness that can be exploited, causing a negative impact to the confidentiality, integrity, or availability of an impacted component or components." It is a publicly available and free-to-use database of known software vulnerabilities maintained at . For additional information, see [CVE Glossary at cve.org](https://www.cve.org/ResourcesSupport/Glossary) ## What is a CVSS Score? **Common Vulnerability Scoring System** (CVSS) is "an open framework for communicating the characteristics and severity of software vulnerabilities." For additional information, see [Vulnerability Metrics](https://nvd.nist.gov/vuln-metrics/cvss) at nvd.nist.gov ## Fixed Security Vulnerabilities {% content-ref url="cve/enterprise-server" %} [enterprise-server](https://mariadb.com/docs/server/security/cve/enterprise-server) {% endcontent-ref %} {% content-ref url="cve/community-server" %} [community-server](https://mariadb.com/docs/server/security/cve/community-server) {% endcontent-ref %} Some CVE apply to MySQL but are not present in MariaDB Enterprise Server or MariaDB Community Server; these are listed on the [Security Vulnerabilities fixed in Oracle MySQL that did not exist in MariaDB](https://mariadb.com/docs/server/security/cve/security-vulnerabilities-in-oracle-mysql-that-did-not-exist-in-mariadb) page. *This page is licensed: CC BY-SA / Gnu FDL* {% @marketo/form formId="4316" %}