CVE-2026-48163 | MariaDB Server up to 12.3.1 joiner os command injection (GHSA-rpgv-q6gv-684r)

A vulnerability marked as critical has been reported in MariaDB Server up to 10.6.26/10.11.17/11.4.11/11.8.7/12.3.1. This vulnerability affects unknown code of the component joiner Handler. The manipulation leads to os command injection.

This vulnerability is listed as CVE-2026-48163. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More