{"id":"BIT-mysql-client-2020-7221","details":"mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack on a chmod 04755 of auth_pam_tool_dir/auth_pam_tool. NOTE: this does not affect the Oracle MySQL product, which implements mysql_install_db differently.","aliases":["BIT-mariadb-2020-7221","BIT-mariadb-min-2020-7221","CVE-2020-7221"],"modified":"2025-06-10T12:59:13.485742Z","published":"2024-03-06T11:09:41.074Z","database_specific":{"severity":"High","cpes":["cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*"]},"references":[{"type":"WEB","url":"https://bugzilla.suse.com/show_bug.cgi?id=1160868"},{"type":"WEB","url":"https://github.com/MariaDB/server/commit/9d18b6246755472c8324bf3e20e234e08ac45618"},{"type":"WEB","url":"https://seclists.org/oss-sec/2020/q1/55"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-7221"}],"affected":[{"package":{"name":"mysql-client","ecosystem":"Bitnami","purl":"pkg:bitnami/mysql-client"},"ranges":[{"type":"SEMVER","events":[{"introduced":"10.4.7"},{"fixed":"10.4.12"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/mysql-client/BIT-mysql-client-2020-7221.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}],"schema_version":"1.7.3"}