PT-2025-16456 · Mysql Server+11 · Mysql Client+11

Published

2025-03-11

·

Updated

2026-04-02

·

CVE-2025-30722

CVSS v3.1

6.8

Medium

VectorAV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions MySQL Client versions 8.0.0 through 8.0.41 MySQL Client versions 8.4.0 through 8.4.4 MySQL Client versions 9.0.0 through 9.2.0
Description The issue allows a low-privileged attacker with network access via multiple protocols to compromise the MySQL Client, resulting in unauthorized access to critical data or complete access to all MySQL Client accessible data, as well as unauthorized update, insert, or delete access to some of MySQL Client accessible data.
Recommendations For versions 8.0.0 through 8.0.41, update to a version outside of this range to resolve the issue. For versions 8.4.0 through 8.4.4, update to a version outside of this range to resolve the issue. For versions 9.0.0 through 9.2.0, update to a version outside of this range to resolve the issue.

Fix

Information Disclosure

Weakness Enumeration

CWE-200

Related Identifiers

ALSA-2025:15699
ALSA-2025:16046
ALSA-2025:16086
ALSA-2025:16861
ALSA-2025:19572
ALSA-2025:19584
ALSA-2026:0136
ALSA-2026:0247
ALSA-2026:6435
ALT-PU-2025-7233
ALT-PU-2025-7238
ALT-PU-2025-7242
BDU:2025-15829
BIT-MARIADB-2025-30722
BIT-MARIADB-MIN-2025-30722
BIT-MYSQL-CLIENT-2025-30722
CESA-2025_16861
CESA-2025_19572
CVE-2025-30722
DLA-4208-1
ECHO-14B2-C792-E3A0
INFSA-2025_16046
INFSA-2025_16086
INFSA-2025_16861
INFSA-2025_19572
INFSA-2025_19584
MGASA-2025-0186
OESA-2025-1454
RHSA-2025:16861
RHSA-2025:19572
RHSA-2025:19584
RHSA-2025_16046
RHSA-2025_16086
RHSA-2025_16861
RHSA-2025_19572
RHSA-2025_19584
RHSA-2026:0136
RHSA-2026:0247
RHSA-2026:0334
RHSA-2026:0335
RHSA-2026:0376
RHSA-2026:6435
SUSE-SU-2025:03275-1
SUSE-SU-2025:03276-1
SUSE-SU-2025:4491-1
SUSE-SU-2025_03275-1
USN-7479-1
USN-7519-1
USN-7548-1

Affected Products

Alt Linux
Almalinux
Centos
Debian
Linuxmint
Mariadb Server
Mysql Client
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu