vulnerability
Red Hat: CVE-2025-13699: mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:H/Au:N/C:C/I:C/A:C) | Nov 27, 2025 | Jan 6, 2026 | Jan 16, 2026 |
Severity
6
CVSS
(AV:L/AC:H/Au:N/C:C/I:C/A:C)
Published
Nov 27, 2025
Added
Jan 6, 2026
Modified
Jan 16, 2026
Description
A flaw was found in MariaDB. This vulnerability allows remote attackers to execute arbitrary code on affected installations via improper validation of a user-supplied path prior to using it in file operations in the mariadb-dump utility, requiring user interaction.
Solutions
redhat-upgrade-asio-develredhat-upgrade-galeraredhat-upgrade-galera-debuginforedhat-upgrade-galera-debugsourceredhat-upgrade-judyredhat-upgrade-judy-debuginforedhat-upgrade-judy-debugsourceredhat-upgrade-judy-develredhat-upgrade-mariadbredhat-upgrade-mariadb-backupredhat-upgrade-mariadb-backup-debuginforedhat-upgrade-mariadb-client-utilsredhat-upgrade-mariadb-commonredhat-upgrade-mariadb-debuginforedhat-upgrade-mariadb-debugsourceredhat-upgrade-mariadb-develredhat-upgrade-mariadb-embeddedredhat-upgrade-mariadb-embedded-debuginforedhat-upgrade-mariadb-embedded-develredhat-upgrade-mariadb-errmsgredhat-upgrade-mariadb-gssapi-serverredhat-upgrade-mariadb-gssapi-server-debuginforedhat-upgrade-mariadb-oqgraph-engineredhat-upgrade-mariadb-oqgraph-engine-debuginforedhat-upgrade-mariadb-pamredhat-upgrade-mariadb-pam-debuginforedhat-upgrade-mariadb-serverredhat-upgrade-mariadb-server-debuginforedhat-upgrade-mariadb-server-galeraredhat-upgrade-mariadb-server-utilsredhat-upgrade-mariadb-server-utils-debuginforedhat-upgrade-mariadb-testredhat-upgrade-mariadb-test-debuginforedhat-upgrade-mariadb10-11-debuginforedhat-upgrade-mariadb10-11-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.