Skip to main content

Red Hat CVE-2026-32710

| EUVDEUVD-2026-13764 HIGH
Heap-based Buffer Overflow (CWE-122)
2026-03-20 GitHub_M
8.5
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
8.5 HIGH
AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
SUSE
HIGH
qualitative
Red Hat
7.5 MEDIUM
qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

6
Analysis Updated
Apr 16, 2026 - 06:19 EUVD-patch-fix
executive_summary
Re-analysis Queued
Apr 16, 2026 - 05:29 backfill_euvd_patch
patch_released
Patch available
Apr 16, 2026 - 05:29 EUVD
12.2.2,11.4.10,11.8.6
EUVD ID Assigned
Mar 20, 2026 - 18:46 euvd
EUVD-2026-13764
Analysis Generated
Mar 20, 2026 - 18:46 vuln.today
CVE Published
Mar 20, 2026 - 18:31 nvd
HIGH 8.5

DescriptionGitHub Advisory

MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn the crash into a remote code execution. These conditions require tight control over memory layout which is generally only attainable in a lab environment. This issue is fixed in MariaDB 11.4.10, MariaDB 11.8.6, and MariaDB 12.2.2.

AnalysisAI

Authenticated users can trigger a heap overflow in MariaDB 11.4 (before 11.4.10) and 11.8 (before 11.8.6) through the JSON_SCHEMA_VALID() function, causing denial of service and potentially remote code execution under specific memory layout conditions. The vulnerability requires valid database credentials and affects server availability and integrity across scope boundaries. No patch is currently available for vulnerable versions.

Technical ContextAI

This vulnerability affects MariaDB Server (cpe:2.3:a:mariadb:server:*:*:*:*:*:*:*:*), a community-developed fork of MySQL that provides database management services. The issue is classified as CWE-122 (Heap-based Buffer Overflow) and manifests in the JSON_SCHEMA_VALID() function, which is used to validate JSON documents against JSON Schema definitions. Heap-based buffer overflows occur when a program writes data beyond the allocated heap memory boundaries, potentially corrupting adjacent memory structures. In this case, the buffer overflow during JSON schema validation operations can lead to memory corruption that crashes the server process and theoretically enables arbitrary code execution if an attacker can precisely manipulate heap layout.

RemediationAI

Upgrade MariaDB Server to version 11.4.10 or later for the 11.4 branch, version 11.8.6 or later for the 11.8 branch, or version 12.2.2 or later for the 12.x branch. Patches are available through the official MariaDB distribution channels, with full details in the GitHub Security Advisory at https://github.com/MariaDB/server/security/advisories/GHSA-4rj5-2227-9wgc and technical tracking information at https://jira.mariadb.org/browse/MDEV-38356. Until patching is complete, organizations can mitigate risk by restricting database access to only trusted authenticated users, implementing principle of least privilege for database accounts, monitoring for unexpected server crashes, and avoiding use of JSON_SCHEMA_VALID() function in production environments if feasible. Network-level controls such as database firewall rules and query filtering may provide defense-in-depth but will not prevent exploitation by legitimate authenticated users.

Vendor StatusVendor

SUSE

Severity: High
Product Status
SUSE Linux Enterprise High Performance Computing 15 SP7 SUSE Linux Enterprise Module for Server Applications 15 SP7 SUSE Linux Enterprise Server 15 SP7 SUSE Linux Enterprise Server for SAP Applications 15 SP7 Fixed
SUSE Linux Enterprise Module for Package Hub 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Package Hub 15 SP7 Fixed
SUSE Linux Enterprise Module for Server Applications 15 SP7 Fixed

Share

CVE-2026-32710 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy