CYBERSIXT Signal Over Noise
securityonline.info 6/7/2026, 9:50:22 PM · external

CVE-2026-49261 flaw in MariaDB lets attackers run remote code

CVE-2026-49261 flaw in MariaDB lets attackers run remote code
CyberSIXT Evidence Panel
Primary Source mariadb.com
CVE Intel
CVE-2026-49261 - NVD Not in KEV 0 Patch Unknown
CVE-2026-48165 - NVD Not in KEV 0 Patch Unknown
CVE-2026-48163 - NVD Not in KEV 0 Patch Unknown
CISA KEV Not in KEV
Patch Patch Status Unknown

AN urgent security warning has been issued regarding critical vulnerabilities in MariaDB, impacting multiple open-source database installations. The most severe issue, tracked as CVE-2026-49261, has a maximum CVSS score of 10.0, indicating potential remote execution of unauthorized actions. Two additional high-severity vulnerabilities, CVE-2026-48165 and CVE-2026-48163, also have a CVSS score of 8.0, affecting specific community server versions prior to 11.8.8, 11.4.12, 10.11.18, and 10.6.27. It is crucial for administrators to apply vendor patches immediately and monitor query logs to detect unauthorized access.

View Primary Source Via securityonline.info

Article by CyberSIXT