CVE-2020-15180

Description

A flaw was found in the mysql-wsrep component of mariadb. Lack of input sanitization in `wsrep_sst_method` allows for command injection that can be exploited by a remote attacker to execute arbitrary commands on galera cluster nodes. This threatens the system's confidentiality, integrity, and availability. This flaw affects mariadb versions before 10.1.47, before 10.2.34, before 10.3.25, before 10.4.15 and before 10.5.6.

How to fix CVE-2020-15180

To remediate CVE-2020-15180, upgrade the affected package to a fixed version below.

• —upgrade to 10.3.25-r0 or later
• —upgrade to 10.1.47 or later
• —upgrade to 10.1.47 or later
• —upgrade to 10.1.47 or later
• —upgrade to 10.1.47-0+deb9u1 or later
• —upgrade to 1:10.3.25-0+deb10u1 or later
• —upgrade to 1:10.5.6-1 or later

Is CVE-2020-15180 being exploited?

Low — EPSS is 4.6%, meaning exploitation activity has not been observed at scale.

Affected packages (7)

• from 0, < 10.3.25-r0
• >= 10.1.0, < 10.1.47, >= 10.2.0, < 10.2.34, >= 10.3.0, < 10.3.25, >= 10.4.0, < 10.4.15, >= 10.5.0, < 10.5.6
• >= 10.1.0, < 10.1.47, >= 10.2.0, < 10.2.34, >= 10.3.0, < 10.3.25, >= 10.4.0, < 10.4.15, >= 10.5.0, < 10.5.6
• >= 10.1.0, < 10.1.47, >= 10.2.0, < 10.2.34, >= 10.3.0, < 10.3.25, >= 10.4.0, < 10.4.15, >= 10.5.0, < 10.5.6
• from 0, < 10.1.47-0+deb9u1
• from 0, < 1:10.3.25-0+deb10u1
• from 0, < 1:10.5.6-1

CVSS scores

References (8)

• ADVISORYsecurity.alpinelinux.org/vuln/CVE-2020-15180
• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2020-15180
• WEBbugzilla.redhat.com/show_bug.cgi?id=1894919
• WEBlists.debian.org/debian-lts-announce/2020/10/msg00021.html
• WEB