Description

Vitess is a database clustering system for horizontal scaling of MySQL. Prior to versions 23.0.3 and 22.0.4, anyone with read/write access to the backup storage location (e.g. an S3 bucket) can manipulate backup manifest files so that files in the manifest — which may be files that they have also added to the manifest and backup contents — are written to any accessible location on restore. This is a common path traversal security issue. This can be used to provide that attacker with unintended/unauthorized access to the production deployment environment — allowing them to access information available in that environment as well as run any additional arbitrary commands there. Versions 23.0.3 and 22.0.4 contain a patch. No known workarounds are available.

INFO

Published Date :

2026-02-26T01:52:30.677Z

Last Modified :

2026-02-26T01:52:30.677Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-27969 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-27969.

URL Resource
https://github.com/vitessio/vitess/commit/c565cab615bc962bda061dcd645aa7506c59ca4a cve-icon cve-icon
https://github.com/vitessio/vitess/pull/19470 cve-icon cve-icon
https://github.com/vitessio/vitess/security/advisories/GHSA-r492-hjgh-c9gw cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability