A vulnerability marked as critical has been reported in MariaDB Server up to 10.6.26/10.11.17/11.4.11/11.8.7/12.3.1 . This vulnerability affects unknown code of the component joiner Handler . The manipulation leads to os command injection. This vulnerability is listed as CVE-2026-48163 . The attack may be initiated remotely. There is no available exploit. It is suggested to upgrade the affected component.