Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-30722

Опубликовано: 15 апр. 2025
Источник: nvd
CVSS3: 5.3
CVSS3: 6.8
EPSS Низкий

Описание

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N).

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:*
Версия от 7.6.0 (включая) до 7.6.33 (включая)
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:*
Версия от 8.0.0 (включая) до 8.0.41 (включая)
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:*
Версия от 8.4.0 (включая) до 8.4.4 (включая)
cpe:2.3:a:oracle:mysql_cluster:*:*:*:*:*:*:*:*
Версия от 9.0.0 (включая) до 9.2.0 (включая)
Конфигурация 2

Одно из

cpe:2.3:a:oracle:mysql_client:*:*:*:*:*:*:*:*
Версия от 8.0.0 (включая) до 8.0.41 (включая)
cpe:2.3:a:oracle:mysql_client:*:*:*:*:*:*:*:*
Версия от 8.4.0 (включая) до 8.4.4 (включая)
cpe:2.3:a:oracle:mysql_client:*:*:*:*:*:*:*:*
Версия от 9.0.0 (включая) до 9.2.0 (включая)
Конфигурация 3

Одно из

cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:*
cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*

EPSS

Процентиль: 18%
0.00058
Низкий

5.3 Medium

CVSS3

6.8 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

ubuntu логотип

CVE-2025-30722

CVSS3: 5.3
ubuntu
5 месяцев назад

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N).

redhat логотип

CVE-2025-30722

CVSS3: 5.9
redhat
5 месяцев назад

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N).

debian логотип

CVE-2025-30722

CVSS3: 5.3
debian
5 месяцев назад

Vulnerability in the MySQL Client product of Oracle MySQL (component: ...

github логотип

GHSA-53hw-hvww-v6v8

CVSS3: 5.3
github
5 месяцев назад

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N).

EPSS

Процентиль: 18%
0.00058
Низкий

5.3 Medium

CVSS3

6.8 Medium

CVSS3

Дефекты

NVD-CWE-noinfo