CNNVD-202507-1948 Information
CNNVD ID
CNNVD-202507-1948
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。MySQL Server是其中的一个数据库服务器组件。 Oracle MySQL的MySQL Client 8.0.0至8.0.42版本、8.4.0至8.4.5版本和9.0.0至9.3.0版本存在安全漏洞,该漏洞源于mysqldump组件访问控制不当,可能导致数据未经授权读取或修改。
Description (English)
Oracle MySQL is an open source relationship database management system for Oracle. MySQL Server is one of the database server components. There is a security loophole in MySQL Clinic 8.0.0 to 8.0.42, 8.4.0 to 8.4.5 and 9.0.0 to 9.3.0 for Oracle MySQL, which stems from inappropriate access controls of mysqldump components, which may lead to unauthorized data reading or modification.
Hazard Level
Critical
Vulnerability Type
访问控制错误
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50081
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: