PT-2025-16444 · Oracle · Mysql Server
Published
2025-04-15
·
Updated
2025-04-25
·
CVE-2025-30710
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Oracle MySQL versions 8.0.0 through 8.0.41
Oracle MySQL versions 8.4.0 through 8.4.4
Oracle MySQL versions 9.0.0 through 9.2.0
Description
The issue allows a high-privileged attacker with network access via multiple protocols to compromise MySQL Cluster. Successful attacks can result in the unauthorized ability to cause a hang or frequently repeatable crash of MySQL Cluster.
Recommendations
For versions 8.0.0 through 8.0.41, update to a version outside of this range to resolve the issue.
For versions 8.4.0 through 8.4.4, update to a version outside of this range to resolve the issue.
For versions 9.0.0 through 9.2.0, update to a version outside of this range to resolve the issue.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mysql Server