CNNVD-202507-1974 Information

CNNVD ID

CNNVD-202507-1974

Related CVE

CVE-2025-50078

• CNNVD Published: 2025-07-15

Description (Chinese)

Oracle MySQL是美国甲骨文（Oracle）公司的一套开源的关系数据库管理系统。MySQL Server是其中的一个数据库服务器组件。 Oracle MySQL的MySQL Server 8.0.0至8.0.42版本、8.4.0至8.4.5版本和9.0.0至9.3.0版本存在安全漏洞，该漏洞源于DML组件访问控制不当，可能导致拒绝服务攻击。

Description (English)

Oracle MySQL is an open source relationship database management system for Oracle. MySQL Server is one of the database server components. MySQL Server 8.0.0 to 8.0.42, 8.4.0 to 8.4.5 and 9.0.0 to 9.3.0 of Oracle MySQL has a security loophole, which stems from inadequate access control of DML components and may lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

资源管理错误

Affected Vendor

OrangeHRM

Published

2025-07-15

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-50078 https://www.oracle.com/security-alerts/cpujul2025.html

Patch

https://www.oracle.com/security-alerts/cpujul2025.html