MariaDB: FILE privilege was not checked for subqueries in the...

5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

Description

MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB allowed SELECT ... INTO OUTFILE and SELECT ... INTO DUMPFILE without verifying the FILE privilege if the FROM clause contained only subqueries. This issue has been patched in versions 10.6.26, 10.11.17, 11.4.11, 11.8.7, and 12.3.2.

Basic Information

ID CVE-2026-44173

Source GitHub_M

Published Jun 12, 2026 at 17:34

Modified Jun 12, 2026 at 18:03

Affected Product

Vendor MariaDB

Product server

Version >= 10.6.1, < 10.6.26

Affected Versions MariaDB server >= 10.6.1, < 10.6.26
MariaDB server >= 10.11.1, < 10.11.17
MariaDB server >= 11.4.1, < 11.4.11
MariaDB server >= 11.8.1, < 11.8.7
MariaDB server >= 12.3.1, < 12.3.2

CWE Classification

CWE-863

References

{
    "lastseen": "",
    "description": "MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.26, 10.11.1 to before 10.11.17, 11.4.1 to before 11.4.11, 11.8.1 to before 11.8.7, and 12.3.1, MariaDB allowed SELECT ... INTO OUTFILE and SELECT ... INTO DUMPFILE without verifying the FILE privilege if the FROM clause contained only subqueries. This issue has been patched in versions 10.6.26, 10.11.17, 11.4.11, 11.8.7, and 12.3.2.",
    "published": "2026-06-12T17:34:30.301Z",
    "modified": "2026-06-12T18:03:34.244Z",
    "type": "cve",
    "title": "MariaDB: FILE privilege was not checked for subqueries in the FROM clause",
    "source": "GitHub_M",
    "references": "https://github.com/MariaDB/server/security/advisories/GHSA-667j-m53j-wpmc\nhttps://jira.mariadb.org/browse/MDEV-39493",
    "id": "CVE-2026-44173",
    "bulletinFamily": "",
    "cwe": [
        "CWE-863"
    ],
    "cvelist": null,
    "sourceData": "MariaDB server >= 10.6.1, < 10.6.26\nMariaDB server >= 10.11.1, < 10.11.17\nMariaDB server >= 11.4.1, < 11.4.11\nMariaDB server >= 11.8.1, < 11.8.7\nMariaDB server >= 12.3.1, < 12.3.2",
    "sourceHref": "",
    "cvss": {
        "score": 5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "server",
    "version": ">= 10.6.1, < 10.6.26",
    "vendor": "MariaDB",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

MariaDB: FILE privilege was not checked for subqueries in the FROM clause_CVE-2026-44173