What is CVE-2026-48165?

CVE-2026-48165 is a high-severity vulnerability, classified under OS Command Injection. CVSS score: 8.0/10. Published 2026-06-12.

How severe is CVE-2026-48165?

High severity. CVSS v3 base score is 8.0 out of 10.

CVE-2026-48165

CVE-2026-48165

MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high-privileged MariaDB user could've used w…

Vulnerability class: Command Injection (OS Command Injection)

CVSS v3 metric

CVSS v3 base score 8.0 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

security-advisories@github.com
security-advisories@github.com

Frequently asked questions

What is CVE-2026-48165?: CVE-2026-48165 is a high-severity vulnerability, classified under OS Command Injection. CVSS score: 8.0/10. Published 2026-06-12.
How severe is CVE-2026-48165?: High severity. CVSS v3 base score is 8.0 out of 10.