CVE-2025-53054

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:C

Name of the Vulnerable Software and Affected Versions Oracle MySQL versions 8.0.0 through 8.0.43 Oracle MySQL versions 8.4.0 through 8.4.6 Oracle MySQL versions 9.0.0 through 9.4.0

Description A flaw exists in the InnoDB component of Oracle MySQL Server. A high-privileged attacker with network access through multiple protocols can compromise the server. Successful exploitation can lead to a denial-of-service condition, causing the server to hang or crash, and potentially allow unauthorized modification of data.

Recommendations Update to a version beyond 8.0.43 Update to a version beyond 8.4.6 Update to a version beyond 9.4.0

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

ALSA-2025:23008

ALSA-2025:23109

ALSA-2025:23111

ALSA-2025:23134

ALSA-2025:23137

AZL-68658

BDU:2025-15853

CVE-2025-53054

OESA-2025-2540

OESA-2025-2541

OESA-2025-2542

OESA-2025-2543

OESA-2025-2544

OESA-2025-2644

USN-7873-1

USN-8006-1

Affected Products

Almalinux

Centos

Linuxmint

Mysql 8.0

Mysql 8.4

Mysql 9.0

Mysql Server

Red Hat

Rocky Linux

Ubuntu

CVE-2025-53054

Weakness Enumeration

Related Identifiers

Affected Products

References · 82