Oracle MySQL Client Unauthorized Data Access Vulnerability in mysqldump Component

Vulnerability

A vulnerability has been identified in the MySQL Client product of Oracle MySQL, specifically in the mysqldump component. This issue affects versions 8.0.0 through 8.0.42, 8.4.0 through 8.4.5, and 9.0.0 through 9.3.0. The vulnerability is difficult to exploit but allows a high-privileged attacker with network access via multiple protocols to compromise the MySQL Client. Exploitation of this vulnerability requires human interaction from a third party. Successful attacks could lead to unauthorized update, insert, or delete access to certain MySQL Client accessible data, as well as unauthorized read access to a subset of MySQL Client accessible data.

Impact

Exploitation of this vulnerability could result in unauthorized access to modify or delete data within the MySQL Client, as well as unauthorized read access to some data.

Added: Jul 15, 2025, 10:04 PM

Updated: Jul 15, 2025, 10:04 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.3

exploitability

4.1

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.3

exploitability

4.1

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle MySQL Client Unauthorized Data Access Vulnerability in mysqldump Component

Vulnerability

Impact

Affected Products

Oracle MySQL Client

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating