CVE-2021-27928

Description

A remote code execution issue was discovered in MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10.4.18, and 10.5 before 10.5.9; Percona Server through 2021-03-03; and the wsrep patch through 2021-03-03 for MySQL. An untrusted search path leads to eval injection, in which a database SUPER user can execute OS commands after modifying wsrep_provider and wsrep_notify_cmd. NOTE: this does not affect an Oracle product.

How to fix CVE-2021-27928

To remediate CVE-2021-27928, upgrade the affected package to a fixed version below.

• —upgrade to 10.3.28-r0 or later
• —upgrade to 10.2.37 or later
• —upgrade to 10.2.37 or later
• —upgrade to 10.2.37 or later
• —upgrade to 10.1.48-0+deb9u2 or later
• —upgrade to 1:10.5.9-1 or later

Is CVE-2021-27928 being exploited?

Moderate — EPSS is 48.9%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (6)

• from 0, < 10.3.28-r0
• >= 10.2.0, < 10.2.37, >= 10.3.0, < 10.3.28, >= 10.4.0, < 10.4.18, >= 10.5.0, < 10.5.9
• >= 10.2.0, < 10.2.37, >= 10.3.0, < 10.3.28, >= 10.4.0, < 10.4.18, >= 10.5.0, < 10.5.9
• >= 10.2.0, < 10.2.37, >= 10.3.0, < 10.3.28, >= 10.4.0, < 10.4.18, >= 10.5.0, < 10.5.9
• from 0, < 10.1.48-0+deb9u2
• from 0, < 1:10.5.9-1

CVSS scores

References (12)

• ADVISORYsecurity.alpinelinux.org/vuln/CVE-2021-27928
• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2021-27928
• WEBpacketstormsecurity.com/files/162177/MariaDB-10.2-Command-Execution.html
• WEBjira.mariadb.org/browse/MDEV-25179