WINGFUZZ FOR DB

WINGFUZZ for DB supports grey-box security and quality testing of various kinds of database system, automatically discovering critical weakness and unknown vulnerabilities.

PERFORMANCE

WINGFUZZ for DB with its innovative core engine outperforms comparable tools.

In comparison test targeting enterprise-level relational database like PostgreSQL, GaussDB, Comdb2

2660%

best code coverage improvement from WINGFUZZ

40%

least code coverage improvement from WINGFUZZ

70+

new defects found in test

In comparison test targeting industrial time-series database like IoTDB, QuestDB, TimescaleDB

693%

best code coverage improvement from WINGFUZZ

21%

least code coverage improvement from WINGFUZZ

40+

new defects found in test

MINING ABILITY

WINGFUZZ for DB has helped the DB community to find lots of vulnerabilities.

Database Module Defect Type Detail
Percona TiDB v6.1.0 denial-of-service CVE-2022-34969
TiDB MySQL v8.0.28-19 runtime error CVE-2022-34968
MonetDB Server 11.43.13 denial-of-service CVE-2022-34967
SQLite 5.1 SEGV CVE-2021-46100
MariaDB v10.7 use-after-poison CVE-2022-32091
MariaDB v10.5 to v10.7 SEGV CVE-2022-32089
MariaDB v10.2 to v10.7 SEGV CVE-2022-32088
MariaDB v10.2 to v10.7 SEGV CVE-2022-32087
MariaDB v10.4 to v10 SEGV CVE-2022-32086
MariaDB v10.2 to v10.7 SEGV CVE-2022-32085
MariaDB v10.2 to v10.7 SEGV CVE-2022-32084
MariaDB v10.2 to v10.6.1 SEGV CVE-2022-32083
MariaDB v10.5 to v10.7 SEGV CVE-2022-32082
MariaDB v10.4 to v10.7 SEGV CVE-2022-32081
MariaDB Server v10.6.3 use-after-poison CVE-2022-27458
MariaDB Server v10.6.3 heap-use-afrer-free CVE-2022-27457
MariaDB Server v10.6.3 use-after-poison CVE-2022-27456
MariaDB Server v10.6.3 heap-use-after-free CVE-2022-27455
MariaDB Server v10.9 SEGV CVE-2022-27452
MariaDB Server v10.9 SEGV CVE-2022-27451
MariaDB Server v10.9 SEGV CVE-2022-27449
MariaDB Server v10.9 SEGV CVE-2022-27448
MariaDB Server v10.9 use-after-poison CVE-2022-27447
MariaDB Server v10.9 SEGV CVE-2022-27446
MariaDB Server v10.9 SEGV CVE-2022-27445
MariaDB Server v10.9 SEGV CVE-2022-27444
MariaDB Server v10.7 buffer overflow CVE-2022-27387
MariaDB Server v10.7 denial-of-service CVE-2022-27386
MariaDB Server v10.6 denial-of-service CVE-2022-27383
MariaDB Server v10.7 denial-of-service CVE-2022-27382
MariaDB Server v10.6 denial-of-service CVE-2022-27381
MariaDB Server v10.6.2 denial-of-service CVE-2022-27379
MariaDB Server v10.7 denial-of-service CVE-2022-27378
MariaDB Server v10.6.3 buffer overflow CVE-2022-27377
MariaDB Server v10.6.5 denial-of-service CVE-2022-27376
MariaDB Server v10.6.5 denial-of-service CVE-2022-27354
MariaDB Server v10.6.5 denial-of-service CVE-2022-27350
MySQL 8.0.26 THE TENTH SIGABRT CAUSE SERVER CRASH OF MYSQL CVE-2021-35645
MySQL 8.0.26 THE FIRST HEAP-USE-AFTER-FREE SECURITY ISSUE OF MYSQL SERVER CVE-2021-35644
MySQL 8.0.26 THE FIFTH SIGABRT CAUSE SERVER CRASH OF MYSQL CVE-2021-35643
MySQL 8.0.26 THE FIRST DEADLYSIGNAL SECURITY lSSUE OF MYSQL SERVER CVE-2021-35642
MySQL 8.0.26 THE FIRST SIGABRT CAUSE SERVER CRASH OF MYSQL CVE-2021-35641
MySQL 8.0.23 memory safety CVE-2021-2444
MySQL 8.0.25 memory safety CVE-2021-2357
MySQL 8.0.23 memory safety CVE-2021-2230
MySQL 5.7.33 NULL pointer dereference CVE-2021-2169
MySQL 8.0.21 memory safety CVE-2021-2055
comdb2 5.0.082.1 bash command injection CVE-2020-27542
comdb2 5.0.082.1 integer overflow CVE-2020-27541
comdb2 5.0.082.1 memory leak CVE-2020-26745
comdb2 5.0.082.1 logic error CVE-2020-26746
comdb2 5.0.082.1 signed integer overflow CVE-2020-26744
comdb2 5.0.082.1 integer overflow CVE-2020-26743
comdb2 5.0.082.1 global-buffer-overflow CVE-2020-26742
comdb2 5.0.082.1 heap-buffer-overflow CVE-2020-26741
MySQL 8.0.21 memory safety CVE-2020-14893
MySQL 8.0.21 memory safety CVE-2020-14861
MySQL 8.0.21 memory safety CVE-2020-14828
MySQL 8.0.20 memory safety CVE-2020-14725
MySQL 8.0.20 memory safety CVE-2020-14654
MySQL Android-10 memory safety CVE-2019-2169
TiDB Optimizer runtime error CNVD-2022-53656
Percona Optimizer denial-of-service CNVD-2022-53658
MonetDB Optimizer denial-of-service CNVD-2022-53661
MariaDB Optimizer denial-of-service CNVD-2022-44537
MariaDB Optimizer denial-of-service CNVD-2022-44538
MariaDB Optimizer denial-of-service CNVD-2022-44539
MariaDB Optimizer denial-of-service CNVD-2022-44540
MariaDB Optimizer denial-of-service CNVD-2022-44541
MariaDB Optimizer denial-of-service CNVD-2022-44542
MariaDB Optimizer denial-of-service CNVD-2022-44543
MariaDB Optimizer denial-of-service CNVD-2022-44544
MariaDB Optimizer denial-of-service CNVD-2022-44546
MariaDB Optimizer denial-of-service CNVD-2022-41391
MariaDB Optimizer denial-of-service CNVD-2022-41392
MariaDB Optimizer denial-of-service CNVD-2022-44547
MariaDB Optimizer denial-of-service CNVD-2022-41396
MariaDB Optimizer denial-of-service CNVD-2022-10792
MariaDB Optimizer denial-of-service CNVD-2022-10795
MariaDB Optimizer denial-of-service CNVD-2022-10897
MariaDB Optimizer denial-of-service CNVD-2022-10779
MariaDB Optimizer denial-of-service CNVD-2022-09562
MariaDB Optimizer denial-of-service CNVD-2022-09561
MariaDB Optimizer denial-of-service CNVD-2022-08956

READY FOR WINGFUZZ?

Build better database today.
CONTACT

+86 159 0102 8716

contact@shuimuyulin.com

45 ChengFu Road, Haidian, Beijing

PRODUCT

WINGFUZZ for Code

WINGFUZZ for DB

WINGFUZZ for OS

WINGFUZZ for Protocol

WINGFUZZ for Web

ABOUT

News

About Us

Join Us

简体中文

京ICP备2021018036号-1

京公网安备 11010802038307号

Copyright © 2022 WingSec Technology Ltd.