Oracle MySQL Server Denial-of-Service Vulnerability in Privileges Component

Vulnerability

A denial-of-service vulnerability has been identified in Oracle MySQL Server, specifically in the Privileges component of the Security feature. This issue affects MySQL versions 8.0.40 and prior, 8.4.3 and prior, and 9.1.0 and prior. The vulnerability is difficult to exploit but allows a high-privileged attacker with network access through multiple protocols to disrupt MySQL Server operations. Successful exploitation can lead to a complete hang or a frequently repeatable crash of the MySQL Server.

Impact

Exploitation of this vulnerability can cause a complete denial-of-service condition on the MySQL Server, leading to a hang or a frequently repeatable crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.7

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.7

impact

2.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle MySQL Server Denial-of-Service Vulnerability in Privileges Component

Vulnerability

Impact

Affected Products

Oracle MySQL Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating