📦

galera_cluster_for_mysql

Name: galera_cluster_for_mysql
Author: WatchStack

Vendor: galeracluster

Login to add this product to WatchStack

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 4.60% Exploit Prob.

Latest CVE CVE-2020-15180 May 27

Security Vulnerability Index

Page 1 / 1

9.0 CVSS

CVE-2020-15180

RCE

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.

EPSS: 4.60%

Severity: CRITICAL

May 27, 2021

Displaying 1 of 1 Total Entries

1

Total 1 Sections