heise PlusAbo
Anzeige

MariaDB database vulnerable: Malicious code or crashes possible

MariaDB developers have closed a security vulnerability. A patch is available.

listen Print view
A symbolic update button on a keyboard.

(Image: Artur Szczybylo/Shutterstock.com)

1 min. read
Security
By

The open-source database management system MariaDB is vulnerable, and attackers can exploit a software flaw. In the worst case, malicious code can get onto systems.

Install Security Update

The vulnerability (CVE-2026-32710 "high") is in the JSON_SCHEMA_VALID() function, according to a warning notice. At this point, attackers can trigger a memory error through an unspecified method. This leads to crashes. In such cases, malicious code can often also get onto PCs and compromise them.

Admins should therefore ensure that one of the protected versions 11.4.10, 11.8.6, or 12.2.2 is installed. So far, there are no reports of ongoing attacks. It is also unclear so far which parameters can be used to identify already attacked computers.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten