CNNVD-202507-1970 Information
CNNVD ID
CNNVD-202507-1970
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。MySQL Server是其中的一个数据库服务器组件。 Oracle MySQL的MySQL Server 8.0.0至8.0.42版本、8.4.0至8.4.5版本和9.0.0至9.3.0版本存在安全漏洞,该漏洞源于InnoDB组件访问控制不当,可能导致拒绝服务攻击和数据未经授权修改。
Description (English)
Oracle MySQL is an open source relationship database management system for Oracle. MySQL Server is one of the database server components. There is a security gap between MySQL Server 8.0.0 to 8.0.42, versions 8.4.0 to 8.4.5 and versions 9.0.0 to 9.3.0 of Oracle MySQL, which stems from inadequate access control of InnoDB components, which may result in denial of service attacks and unauthorized data modification.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OrangeHRM
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujul2025.html https://nvd.nist.gov/vuln/detail/CVE-2025-50085
Patch
https://www.oracle.com/security-alerts/cpujul2025.html
Share on: