Количество 31
Количество 31
CVE-2025-13699
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.
CVE-2025-13699
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.
CVE-2025-13699
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.
CVE-2025-13699
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability
CVE-2025-13699
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution ...
openSUSE-SU-2025:20175-1
Security update for mariadb
SUSE-SU-2025:4520-1
Security update for mariadb
SUSE-SU-2025:4502-1
Security update for mariadb
SUSE-SU-2025:4493-1
Security update for mariadb
SUSE-SU-2025:4438-1
Security update for mariadb
ROS-20260129-73-0058
Уязвимость mariadb11.8
ROS-20260129-73-0057
Уязвимость mariadb11.4
ROS-20260129-73-0056
Уязвимость mariadb10.6
ROS-20260129-73-0055
Уязвимость mariadb
RLSA-2026:0233
Important: mariadb:10.5 security update
RLSA-2026:0232
Important: mariadb:10.11 security update
RLSA-2026:0225
Important: mariadb:10.3 security update
RLSA-2026:0137
Important: mariadb security update
GHSA-rqf2-8625-4vgv
MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000.
ELSA-2026-0698
ELSA-2026-0698: mariadb-devel:10.3 security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000. | CVSS3: 7 | 0% Низкий | 3 месяца назад |
 | CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000. | CVSS3: 7 | 0% Низкий | 4 месяца назад |
 | CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000. | CVSS3: 7 | 0% Низкий | 3 месяца назад |
 | CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability | CVSS3: 7 | 0% Низкий | 3 месяца назад |
| CVE-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution ... | CVSS3: 7 | 0% Низкий | 3 месяца назад |
 | openSUSE-SU-2025:20175-1 Security update for mariadb | 0% Низкий | 3 месяца назад | |
| SUSE-SU-2025:4520-1 Security update for mariadb | 0% Низкий | 3 месяца назад | |
| SUSE-SU-2025:4502-1 Security update for mariadb | 0% Низкий | 3 месяца назад | |
| SUSE-SU-2025:4493-1 Security update for mariadb | 0% Низкий | 3 месяца назад | |
| SUSE-SU-2025:4438-1 Security update for mariadb | 0% Низкий | 3 месяца назад | |
 | ROS-20260129-73-0058 Уязвимость mariadb11.8 | CVSS2: 6.9 | 0% Низкий | около 2 месяцев назад |
| ROS-20260129-73-0057 Уязвимость mariadb11.4 | CVSS2: 6.9 | 0% Низкий | около 2 месяцев назад |
| ROS-20260129-73-0056 Уязвимость mariadb10.6 | CVSS2: 6.9 | 0% Низкий | около 2 месяцев назад |
| ROS-20260129-73-0055 Уязвимость mariadb | CVSS2: 6.9 | 0% Низкий | около 2 месяцев назад |
 | RLSA-2026:0233 Important: mariadb:10.5 security update | 0% Низкий | 3 месяца назад | |
| RLSA-2026:0232 Important: mariadb:10.11 security update | 0% Низкий | 3 месяца назад | |
| RLSA-2026:0225 Important: mariadb:10.3 security update | 0% Низкий | 3 месяца назад | |
| RLSA-2026:0137 Important: mariadb security update | 0% Низкий | 3 месяца назад | |
| GHSA-rqf2-8625-4vgv MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MariaDB. Interaction with the mariadb-dump utility is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of view names. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27000. | CVSS3: 7 | 0% Низкий | 3 месяца назад |
| ELSA-2026-0698 ELSA-2026-0698: mariadb-devel:10.3 security update (IMPORTANT) | 2 месяца назад |
Уязвимостей на страницу