How severe is CVE-2025-21494?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.1 out of 10.

What type of vulnerability is CVE-2025-21494?

This is classified as CWE-770, which is a common weakness in software security.

CVE-2025-21494 - MEDIUM Severity | CVSS 4.1

Vulnerability Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.1 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

Related Vulnerabilities

CVE-2024-4029

MEDIUM

CVSS:4.1(Medium)

A vulnerability was found in Wildfly’s management interface. Due to the lack of limitation of sockets for the management interface, it may be possible to cause a denial of service hitting the nofile l...

CWE-7702024

CVE-2024-39876

MEDIUM

CVSS:4.0(Medium)

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected applications do not properly handle log rotation. This could allow an unauthenticated remote att...

CWE-7702024

CVE-2023-4138

MEDIUM

CVSS:4.2(Medium)

Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.0.

CWE-7702023

CVE-2019-3721

MEDIUM

CVSS:4.3(Medium)

Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability. A remote unauthenticated attacker may send crafted requests with ove...

CWE-7702019

CVE-2020-28200

MEDIUM

CVSS:4.3(Medium)

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension.

CWE-7702020

CVE-2021-25666

MEDIUM

CVSS:4.3(Medium)

A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions < V6.3). Sending specially crafted packets through the ARP protocol to an affected device could cause ...

CWE-7702021