Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-49261— MariaDB server has unsafe parameter handling in `wsrep_notify_cmd`

CVSS 10.0 · Critical EPSS 1.00% · P59

Possible ATT&CK Techniques 1AI

T1059 · Command and Scripting Interpreter

Affected Version Matrix 5

VendorProductVersion RangeStatus
MariaDBserver>= 10.6.1, < 10.6.27affected
>= 10.11.1, < 10.11.18affected
>= 11.4.1, < 11.4.12affected
>= 11.8.1, < 11.8.8affected
= 12.3.1affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-49261

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
MariaDB server has unsafe parameter handling in `wsrep_notify_cmd`
Source: NVD (National Vulnerability Database)
Vulnerability Description
MariaDB server is a community developed fork of MySQL server. Versions 10.6.1 through 10.6.26, 10.11.1 through 10.11.17, 11.4.1 through 11.4.11, 11.8.1 through 11.8.7, and 12.3.1 with `wsrep_notify_cmd` enabled would execute shell commands embedded in the name of the joiner node. This is fixed in 10.6.27, 10.11.18, 11.4.12, 11.8.8, and 12.3.2. As a workaround, anyone who cannot upgrade now should disable `wsrep_notify_cmd`.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
MariaDB Server 操作系统命令注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MariaDB Server是MariaDB开源的一个关系型数据库系统。 MariaDB server 10.6.1至10.6.26版本、10.11.1至10.11.17版本、11.4.1至11.4.11版本、11.8.1至11.8.7版本和12.3.1版本存在操作系统命令注入漏洞,该漏洞源于wsrep_notify_cmd启用时执行嵌入在加入节点名称中的shell命令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
MariaDBserver >= 10.6.1, < 10.6.27 -

II. Public POCs for CVE-2026-49261

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-49261

登录查看更多情报信息。

Patches & Fixes for CVE-2026-49261 (1)

Vendor Advisories for CVE-2026-49261 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2026-49261

No comments yet


Leave a comment