CVE-2026-22015 Affecting mecab-devel package, versions <0:0.996-2.module+el8.10.0+1676+9b4b6e24


Severity

Recommended
0.0
medium
0
10

Based on Rocky Linux security rating.

Threat Intelligence

EPSS
0.24% (16th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-ROCKY8-MECABDEVEL-17342072
  • published16 Jun 2026
  • disclosed21 Apr 2026

Introduced: 21 Apr 2026

CVE-2026-22015  (opens in a new tab)

How to fix?

Upgrade Rocky-Linux:8 mecab-devel to version 0:0.996-2.module+el8.10.0+1676+9b4b6e24 or higher.
This issue was patched in RLSA-2026:25919.

NVD Description

Note: Versions mentioned in the description apply only to the upstream mecab-devel package and not the mecab-devel package as distributed by Rocky-Linux. See How to fix? for Rocky-Linux:8 relevant fixed versions and status.

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

CVSS Base Scores

version 3.1