The host is installed with MariaDB 10.4.7 through 10.4.11 and is prone to an improper privilege management vulnerability. A flaw is present in the application which fails to properly handle auth_pam_tool_dir/auth_pam_tool component. Successful exploitation allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely.