CVE-2026-47847

🗓️ 18 Jun 2026 18:37:47Reported by vmwareType

Bitnami MariaDB Galera images and Helm chart ship hardcoded replication user credentials.

Reporter	Title	Published	Views	Family All 7
ATTACKERKB	CVE-2026-47847	18 Jun 202618:37	–	attackerkb
Cvelist	CVE-2026-47847	18 Jun 202618:37	–	cvelist
EUVD	EUVD-2026-37931	18 Jun 202618:37	–	euvd
NVD	CVE-2026-47847	18 Jun 202620:16	–	nvd
OSV	BIT-MARIADB-GALERA-2026-47847 Default replication credential monitor:monitor created	18 Jun 202612:00	–	osv
Positive Technologies	PT-2026-50716	18 Jun 202600:00	–	ptsecurity
Vulnrichment	CVE-2026-47847	18 Jun 202618:37	–	vulnrichment

[
  {
    "vendor": "Bitnami",
    "product": "bitnami/mariadb-galera",
    "versions": [
      {
        "status": "affected",
        "version": "10.6.0",
        "lessThan": "10.6.27-photon-5-r0",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "10.11.0",
        "lessThan": "10.11.17-photon-5-r1",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "11.4.0",
        "lessThan": "11.4.12-photon-5-r0",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "11.8.0",
        "lessThan": "11.8.7-photon-5-r1",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "12.3.0",
        "lessThan": "12.3.2-photon-5-r0",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Bitnami",
    "product": "bitnami/mariadb-galera Helm chart",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "18.3.0",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
github	www.github.com/bitnami/containers/security/advisories/GHSA-xcv9-cg8m-3mf2

18 Jun 2026 21:16Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.3

SSVC

CWE-798