Unauthenticated Network Vulnerability in MySQL Router by Oracle
CVE-2026-46860
9.8CRITICAL
What is CVE-2026-46860?
MySQL Router by Oracle is vulnerable to an unauthenticated network access flaw. Attackers with HTTP access can exploit this vulnerability, allowing them to take control of the MySQL Router. This can compromise the confidentiality, integrity, and availability of the services relying on MySQL Router. The affected versions range from 9.0.0 to 9.7.0, making organizations using these versions susceptible to unauthorized access and potential data breaches.
Affected Version(s)
MySQL Router 9.0.0 <= 9.7.0