CVEFinder.io

CVE-2025-50068

đŸ”ļ medium
🔍 Scan for this CVE
Summary

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 and 9.0.0-9.3.0. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Cluster executes to compromise MySQL Cluster. Successful attacks of this vulnerability can result in takeover of MySQL Cluster. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity and Availability impacts). CVSS

Description

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 and 9.0.0-9.3.0. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Cluster executes to compromise MySQL Cluster. Successful attacks of this vulnerability can result in takeover of MySQL Cluster. CVSS 3.1 Base Score 6.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

CVSS Score
6.7
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2025-07-15
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 48.8% of all 329,456 vulnerabilities in our database.

#168,698
Below average severity
Severity Percentile
đŸŽ¯ CISA SSVC Assessment Updated: Jul 15, 2025
🔍 Exploitation Status
None
No known exploits
⚙ī¸ Automatable
NO
Requires human interaction
đŸ’Ĩ Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2025-07-24
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

đŸ“Ļ Affected Products 3

Vendor Product Status Affected Versions
oracle mysql_cluster Affected
≥ 8.0.0 ≤ 8.0.42
oracle mysql_cluster Affected
≥ 8.4.0 ≤ 8.4.5
oracle mysql_cluster Affected
≥ 9.0.0 ≤ 9.3.0

🔗 References 1

https://www.oracle.com/security-alerts/cpujul2025.html
Patch Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-46863 ⚠ī¸ high 7.5 0.5 Vulnerability in the MySQL Server, MySQL Cluster product of Oracle MySQL (component: Server: Connection Handling). Supp... 2026-06-17
CVE-2026-21936 đŸ”ļ medium 4.9 0.0 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are... 2026-01-20
CVE-2025-53023 đŸ”ļ medium 4.9 0.1 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are... 2025-07-15
CVE-2025-21574 đŸ”ļ medium 6.5 0.1 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affe... 2025-04-15
CVE-2025-21575 đŸ”ļ medium 6.5 0.1 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affe... 2025-04-15
CVE-2025-30681 ℹī¸ low 2.7 0.1 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are... 2025-04-15
These CVEs affect the same products