Oracle MySQL Connector/Python Vulnerability Allowing Data Manipulation and Denial-of-Service

Vulnerability

A vulnerability exists in Oracle MySQL Connectors, specifically in Connector/Python, affecting versions through 9.1.0. This easily exploitable issue allows a high-privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Exploitation requires human interaction from a third party. Successful attacks could lead to unauthorized creation, deletion, or modification of critical data, access to a subset of MySQL Connectors data, and the ability to cause a complete denial-of-service by hanging or crashing MySQL Connectors.

Impact

Exploitation can result in unauthorized data manipulation, including creation, deletion, or modification of critical data or all accessible MySQL Connectors data. Additionally, it allows unauthorized read access to a subset of MySQL Connectors data and the capability to cause a complete denial-of-service by frequently crashing MySQL Connectors.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

5.6

exploitability

2.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

5.6

exploitability

2.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle MySQL Connector/Python Vulnerability Allowing Data Manipulation and Denial-of-Service

Vulnerability

Impact

Affected Products

Oracle MySQL Connector/Python

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating