Lucene search
K

4 matches found

OSV
OSV
added 2026/06/16 11:46 a.m.8 views

BIT-MARIADB-2026-44169 MariaDB: Authorization bypass in role-based routine-level privilege check exposes stored routine definitions

MariaDB server is a community developed fork of MySQL server. From versions 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, a user getting EXECUTE access to a stored routine via a role, could see the routine definition even without SHOW CREATE ROUTINE privilege. This issue has been...

4.3CVSS5.3AI score0.00161EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/06/10 7:39 a.m.8 views

Security update for mariadb

This update for mariadb fixes the following issues: CVE-2026-3494: audit plugin comment handling bypass bsc1259176. CVE-2026-34303: mysql: optimizer unspecified vulnerability bsc1266435. CVE-2026-35549: SHA2 auth plugin crash on large packets bsc1261413. CVE-2026-44168: wsrep SST unsafe parameter...

9.4CVSS7.1AI score0.00998EPSS
Exploits1References48
Cvelist
Cvelist
added 2021/06/07 8:27 p.m.74 views

CVE-2020-25716

A flaw was found in Cloudforms. A role-based privileges escalation flaw where export or import of administrator files is possible. An attacker with a specific group can perform actions restricted only to system administrator. This is the affect of an incomplete fix for CVE-2020-10783. The highest...

8.1AI score0.00769EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/08/27 4:3 p.m.3 views

CloudForms: Missing access control leads to escalation of admin group privileges

A role-based privileges escalation flaw was found in Red Hat CloudForms where export or import of administrator files was possible. An attacker with EVM-Operator group can perform actions restricted only to system administrator. Refer CVE-2020-25716 for remaining RBAC group fixes...

8.3CVSS5.8AI score0.01EPSS
Exploits0References4
Rows per page
Query Builder