CVE-2025-30722

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Apr 15, 2025

Updated: Apr 19, 2025

Summary

CVE-2025-30722 is a vulnerability impacting the MySQL Client component of Oracle MySQL versions 8.0.0-8.0.41, 8.4.0-8.4.4, and 9.0.0-9.2.0. This issue, which has a CVSS Base Score of 5.9, allows a low-privileged network attacker to compromise the MySQL Client through multiple protocols. Successful exploitation can result in unauthorized access to sensitive data or complete access to all data managed by the MySQL Client. Confidentiality and integrity are at risk, as attackers may gain the ability to unauthorizedly update, insert, or delete data. The attack vector is classified as network (AV:N), requiring high attack complexity (AC:H), and requiring low privileges to exploit (PR:L).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

MySQL Client
Oracle Mysql Cluster

Affected Vendors

Oracle

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Know What Matters

For Customers

For Partners