PT-2026-45147 · Mariadb Foundation · Mariadb

Published

2026-05-26

Updated

2026-06-16

CVE-2026-44169

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions MariaDB server versions 11.4.1 through 11.4.10 MariaDB server versions 11.8.1 through 11.8.6 MariaDB server version 12.3.1

Description A user granted EXECUTE access to a stored routine through a role can view the routine definition, even if they lack the SHOW CREATE ROUTINE privilege.

Recommendations Update to version 11.4.11 Update to version 11.8.7 Update to version 12.3.2

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

BIT-MARIADB-2026-44169

BIT-MARIADB-MIN-2026-44169

BIT-MYSQL-CLIENT-2026-44169

CVE-2026-44169

ECHO-B424-8486-8D0A

OPENSUSE-SU-2026:10897-1

OPENSUSE-SU-2026:20933-1

SUSE-SU-2026:22095-1

SUSE-SU-2026:2330-1

Affected Products

Mariadb

PT-2026-45147 · Mariadb Foundation · Mariadb

CVE-2026-44169

Weakness Enumeration

Related Identifiers

Affected Products

References · 38