A vulnerability, which was classified as critical , has been found in Oracle MySQL Shell 2026.2.0+9.6.1 . This affects an unknown part of the component Shell for VS Code . The manipulation leads to improper authorization. This vulnerability is listed as CVE-2026-46871 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.