CVE-2025-30721 — Corporation Mysql Server vulnerability

9 documents9 sources

Severity

4.0MEDIUMNVD

EPSS

0.2%

top 56.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Corporation Mysql Server Oracle Mysql Server

Timeline

PublishedApr 15

Latest updateMay 5

Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang …

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:HExploitability: 0.3 | Impact: 3.6

Affected Packages2 packages

▶NVDoracle/mysql_server8.0.0 — 8.0.41+2

▶CVEListV5oracle_corporation/mysql_server8.0.0 — 8.0.41+2

🔴Vulnerability Details

OSV

CVE-2025-30721: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF)↗2025-04-15

▶

CVEList

CVE-2025-30721: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF)↗2025-04-15

▶

GHSA

GHSA-v29c-h5f4-7c2v: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF)↗2025-04-15

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2025-05-05

▶

Red Hat

mysql: UDF unspecified vulnerability (CPU Apr 2025)↗2025-04-15

▶

Oracle

Oracle Oracle MySQL Risk Matrix: Server: UDF — CVE-2025-30721↗2025-04-15

▶

Microsoft

Vulnerability in the MySQL Server product of Oracle MySQL↗2025-04-08

▶

Debian

CVE-2025-30721: mysql-8.0 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UD...↗2025

▶