PT-2026-3037 · Mariadb+2 · Mariadb+2
Alessandro Salzano
·
Published
2026-01-15
·
Updated
2026-01-15
·
CVE-2021-47761
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MilleGPG5 version 5.7.2
Description
An authenticated user can modify service executable files located in the MariaDB bin directory. An attacker can replace the
mysqld.exe file with a malicious executable. When the computer restarts, the malicious executable will run with system privileges.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
LPE
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mariadb
Millegpg5
Mysqld.Exe