CVE-2026-29206 - Vulnerability Analysis
HighCVSS: 8.1Last Updated: May 14, 2026
sqloptimizer - SQL Injection
Overview
sqloptimizer contains a sql injection caused by insufficient sanitization of SQL queries in the utility script, letting root attackers execute arbitrary SQL commands, exploit requires slow query logging enabled.
Severity & Score
Impact
Root attackers can execute arbitrary SQL commands, potentially compromising the entire database.
Mitigation
Update to the latest version with proper sanitization or apply patches to fix SQL injection.
Social Media Activity(2 posts)
š CVE-2026-29206 - High (8.1) Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled. š https://www.thehackerwire.com/vulnerability/CVE-2026-29206/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original post
š CVE-2026-29206 - High (8.1) Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled. š https://www.thehackerwire.com/vulnerability/CVE-2026-29206/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2026-29206
- Severity
- High
- CVSS Score
- 8.1
- Type
- sql_injection
- Status
- rejected
- EPSS
- 2.6%
- Social Posts
- 2
CWE
- CWE-89
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H