{
  "affected": [
    {
      "ranges": [
        {
          "database_specific": {
            "versions": [
              {
                "introduced": "11.4.1"
              },
              {
                "fixed": "11.4.10"
              }
            ]
          },
          "events": [
            {
              "introduced": "fa69b085b10f19a3a8b6e7adab27c104924333ae"
            },
            {
              "fixed": "054a893f1645b77e52a329a7fc8cf614eebd1fad"
            }
          ],
          "repo": "https://github.com/mariadb/server",
          "type": "GIT"
        },
        {
          "database_specific": {
            "versions": [
              {
                "introduced": "11.8.1"
              },
              {
                "fixed": "11.8.6"
              }
            ]
          },
          "events": [
            {
              "introduced": "1c4aed7c680c0402d6e97e097f03815c0e9bf4c5"
            },
            {
              "fixed": "9bfea48ce1214cc4470f6f6f8a4e30352cef84e7"
            }
          ],
          "repo": "https://github.com/mariadb/server",
          "type": "GIT"
        },
        {
          "database_specific": {
            "versions": [
              {
                "introduced": "12.1.2"
              },
              {
                "fixed": "12.2.2"
              }
            ]
          },
          "events": [
            {
              "introduced": "70117463f032d59f8e328335e19b59157d34cf07"
            },
            {
              "fixed": "d26a6f44c1f2119377e79a9540886c6d8c01472f"
            }
          ],
          "repo": "https://github.com/mariadb/server",
          "type": "GIT"
        }
      ]
    }
  ],
  "aliases": [
    "GHSA-4rj5-2227-9wgc"
  ],
  "database_specific": {
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
      "CWE-122"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/32xxx/CVE-2026-32710.json"
  },
  "details": "MariaDB server is a community developed fork of MySQL server. An authenticated user can crash MariaDB versions 11.4 before 11.4.10 and 11.8 before 11.8.6 via a bug in JSON_SCHEMA_VALID() function. Under certain conditions it might be possible to turn the crash into a remote code execution. These conditions require tight control over memory layout which is generally only attainable in a lab environment. This issue is fixed in MariaDB 11.4.10, MariaDB 11.8.6, and MariaDB 12.2.2.",
  "id": "CVE-2026-32710",
  "modified": "2026-04-01T23:10:37.900204317Z",
  "published": "2026-03-20T18:31:48.870Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://jira.mariadb.org/browse/MDEV-38356"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/32xxx/CVE-2026-32710.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/MariaDB/server/security/advisories/GHSA-4rj5-2227-9wgc"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32710"
    }
  ],
  "schema_version": "1.7.3",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Heap-based Buffer Overflow in MariaDB"
}