CVE-2020-15180 — Improper Input Validation in Galera Cluster FOR Mysql
CWE-20 — Improper Input ValidationCWE-77 — Command InjectionCWE-94 — Code Injection19 documents7 sources
Severity
9.0CRITICALNVD
OSV8.8
EPSS
4.6%
top 10.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Timeline
PublishedMay 27
Description
A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 2.2 | Impact: 6.0
Affected Packages4 packages
▶CVEListV5mariadb/mariadbmariadb 10.1.47, mariadb 10.2.34, mariadb 10.3.25, mariadb 10.4.15, mariadb 10.5.6
Also affects: Debian Linux 10.0, 9.0
Patches
🔴Vulnerability Details
3📋Vendor Advisories
3💬Community
12Bugzilla▶
CVE-2020-15180 mariadb:10.4/galera: mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep [fedora-all]↗2020-11-05
Bugzilla▶
CVE-2020-15180 mariadb:10.3/galera: mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep [fedora-all]↗2020-11-05
Bugzilla▶
CVE-2020-15180 mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep↗2020-11-05
Bugzilla▶
CVE-2020-15180 mariadb:10.4/mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep [fedora-all]↗2020-11-05
Bugzilla▶
CVE-2020-15180 mariadb:10.3/mariadb: Insufficient SST method name check leading to code injection in mysql-wsrep [fedora-all]↗2020-11-05