Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/04/03 11:2 p.m.4 views

CVE-2026-25212

An issue was discovered in Percona PMM before 3.7. Because an internal database user retains specific superuser privileges, an attacker with pmm-admin rights can abuse the "Add data source" feature to break out of the database context and execute shell commands on the underlying operating system...

9.9CVSS6AI score0.00289EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/02 12:0 a.m.3 views

CVE-2026-25212

An issue was discovered in Percona PMM before 3.7. Because an internal database user retains specific superuser privileges, an attacker with pmm-admin rights can abuse the "Add data source" feature to break out of the database context and execute shell commands on the underlying operating system...

9.9CVSS6AI score0.00289EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/04/02 12:0 a.m.15 views

CVE-2026-25212

An issue was discovered in Percona PMM before 3.7. Because an internal database user retains specific superuser privileges, an attacker with pmm-admin rights can abuse the "Add data source" feature to break out of the database context and execute shell commands on the underlying operating system...

0.00289EPSS
Exploits1References2
CVE
CVE
added 2026/04/02 12:0 a.m.19 views

CVE-2026-25212

Percona PMM prior to 3.7 is affected. An internal database user with superuser privileges can leverage the pmm-admin authenticated Add data source flow to break out of the database context and run shell commands on the underlying OS. This is evidenced in multiple sources (e.g., Percona release no...

9.9CVSS6AI score0.00289EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-7707

Malicious code in bioql PyPI...

10CVSS6.6AI score0.00441EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/13 3:46 a.m.33 views

CVE-2025-26701

An issue was discovered in Percona PMM Server OVA before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3...

10CVSS6.6AI score0.00441EPSS
Exploits0References1
NVD
NVD
added 2025/03/11 6:15 p.m.37 views

CVE-2025-26701

An issue was discovered in Percona PMM Server OVA before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3...

10CVSS0.00441EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/11 12:0 a.m.29 views

CVE-2025-26701

An issue was discovered in Percona PMM Server OVA before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3...

10CVSS9.2AI score0.00441EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.5 views

Percona PMM Server 安全漏洞

Percona PMM Server is an open source database observability, monitoring and management tool for MySQL, PostgreSQL, MongoDB and ProxySQL from Percona. A security vulnerability exists in Percona PMM Server versions prior to 3.0.0-1.ova, which stems from default service account credentials that coul...

10CVSS6.5AI score0.00441EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/03/11 12:0 a.m.32 views

CVE-2025-26701

An issue was discovered in Percona PMM Server OVA before 3.0.0-1.ova. The default service account credentials can lead to SSH access, use of Sudo to root, and sensitive data exposure. This is fixed in PMM2 2.42.0-1.ova, 2.43.0-1.ova, 2.43.1-1.ova, 2.43.2-1.ova, and 2.44.0-1.ova and in PMM3...

10CVSS0.00441EPSS
Exploits0References1
Rows per page
Query Builder