CVE-2024-27766

描述

An issue in MariaDB v.11.1 allows a remote attacker to execute arbitrary code via the lib_mysqludf_sys.so function. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed.

受影響套件(3)

• Bitnami/mariadb>= 11.1.0, < 11.1.5
• Bitnami/mariadb-min>= 11.1.0, < 11.4.8
• Bitnami/mysql-client>= 11.1.0, < 11.3.2

CVSS 分數

參考連結(3)

• WEBhttps://github.com/Ant1sec-ops/CVE-2024-27766
• WEBhttps://nvd.nist.gov/vuln/detail/CVE-2024-27766
• WEBhttps://seclists.org/fulldisclosure/2012/Dec/39