CVE-2025-53042

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Oracle MySQL versions 8.0.0 through 8.0.43 Oracle MySQL versions 8.4.0 through 8.4.6 Oracle MySQL versions 9.0.0 through 9.4.0

Description An issue exists in the Server: Optimizer component of Oracle MySQL Server that allows a high-privileged attacker with network access to cause a denial-of-service (complete hang or frequent crash) condition. The vulnerability is easily exploitable via multiple protocols.

Recommendations Update Oracle MySQL to a version beyond 8.0.43. Update Oracle MySQL to a version beyond 8.4.6. Update Oracle MySQL to a version beyond 9.4.0.

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

ALSA-2025:23008

ALSA-2025:23109

ALSA-2025:23111

ALSA-2025:23134

ALSA-2025:23137

AZL-68637

AZL-68696

BDU:2025-13386

CVE-2025-53042

OESA-2025-2540

OESA-2025-2541

OESA-2025-2542

OESA-2025-2543

OESA-2025-2544

OESA-2025-2644

USN-7873-1

USN-8006-1

Affected Products

Almalinux

Centos

Linuxmint

Mysql Server

Oracle Mysql

Red Hat

Rocky Linux

Ubuntu

CVE-2025-53042

Weakness Enumeration

Related Identifiers

Affected Products

References · 83