Denial of Service Vulnerability in MySQL Server by Oracle
CVE-2025-50077

4.9MEDIUM

Key Information:

Vendor: Oracle
Status: Mysql Cluster; Mysql Server
Vendor: CVE Published:; 15 July 2025

What is CVE-2025-50077?

A vulnerability in the Oracle MySQL Server allows attackers with high privileges and network access to exploit the system through multiple protocols. A successful attack can lead to the unauthorized ability to initiate a denial of service, causing the MySQL Server to hang or crash repeatedly. This vulnerability affects supported versions 8.0.0-8.0.42, 8.4.0-8.4.5, and 9.0.0-9.3.0, demonstrating a critical need for cybersecurity measures to protect against potential exploitation.

Affected Version(s)

MySQL Cluster 7.6.0 <= 7.6.34

MySQL Cluster 8.0.0 <= 8.0.42

MySQL Cluster 8.4.0 <= 8.4.5

References

https://www.oracle.com/security-alerts/cpujul2025.html

vendor-advisory

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 15, 2025
Vulnerability Reserved
Jun 11, 2025