ZDI-22-363: MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MariaDB Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of ZDI-22-363?
The severity of ZDI-22-363 is considered high due to its potential for privilege escalation.
How do I fix ZDI-22-363?
To fix ZDI-22-363, update to the latest version of MariaDB where the vulnerability has been addressed.
Who is affected by ZDI-22-363?
ZDI-22-363 affects installations of MariaDB Server where local attackers can exploit the vulnerability.
What are the potential impacts of ZDI-22-363?
The potential impact of ZDI-22-363 includes unauthorized privilege escalation, allowing attackers to gain elevated access.
Is authentication required to exploit ZDI-22-363?
Yes, authentication is required to exploit ZDI-22-363, which limits its risk to authenticated users.
- agent/type
- agent/references
- agent/title
- agent/severity
- agent/description
- agent/source
- agent/tags
- agent/softwarecombine
- agent/event
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-22-363
- alias/ZDI-CAN-16191
- alias/CVE-2022-24048
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/mariadb
- canonical/mariadb server