# Security Vulnerabilities (CVE) Fixed in MariaDB {% hint style="info" %} This page is about security vulnerabilities fixed in MariaDB products. If you are looking for information on securing your MariaDB installation, see [Securing MariaDB](/docs/server/security/securing-mariadb.md). {% endhint %} {% hint style="danger" %} Sensitive security issues can be reported on or sent directly to the persons responsible for MariaDB security: security \[AT] mariadb (dot) org. {% endhint %} ## What is a CVE? **Common Vulnerabilities and Exposures** (CVE) relate to flaws "in a software, firmware, hardware, or service component resulting from a weakness that can be exploited, causing a negative impact to the confidentiality, integrity, or availability of an impacted component or components." It is a publicly available and free-to-use database of known software vulnerabilities maintained at . For additional information, see [CVE Glossary at cve.org](https://www.cve.org/ResourcesSupport/Glossary) ## What is a CVSS Score? **Common Vulnerability Scoring System** (CVSS) is "an open framework for communicating the characteristics and severity of software vulnerabilities." For additional information, see [Vulnerability Metrics](https://nvd.nist.gov/vuln-metrics/cvss) at nvd.nist.gov ## Fixed Security Vulnerabilities {% content-ref url="/pages/vI6fH9yChQXjPM6Ap2d0" %} [Security Vulnerabilities (CVE) Fixed in MariaDB Enterprise Server](/docs/server/security/cve/enterprise-server.md) {% endcontent-ref %} {% content-ref url="/pages/rYSyN2lNt1b9yIngo0Em" %} [Security Vulnerabilities (CVE) Fixed in MariaDB Community Server](/docs/server/security/cve/community-server.md) {% endcontent-ref %} Some CVE apply to MySQL but are not present in MariaDB Enterprise Server or MariaDB Community Server; these are listed on the [Security Vulnerabilities fixed in Oracle MySQL that did not exist in MariaDB](/docs/server/security/cve/security-vulnerabilities-in-oracle-mysql-that-did-not-exist-in-mariadb.md) page. *This page is licensed: CC BY-SA / Gnu FDL* {% @marketo/form formId="4316" %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://mariadb.com/docs/server/security/cve.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.