How severe is CVE-2025-21495?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2025-21495?

This is classified as CWE-770, which is a common weakness in software security.

CVE-2025-21495 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

Vulnerability in the MySQL Enterprise Firewall product of Oracle MySQL (component: Firewall). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Enterprise Firewall. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Enterprise Firewall. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

Related Vulnerabilities

CVE-2019-12611

MEDIUM

CVSS:4.4(Medium)

An issue was discovered in Bitdefender BOX firmware versions before 2.1.37.37-34 that affects the general reliability of the product. Specially crafted packets sent to the miniupnpd implementation in ...

CWE-7702019

CVE-2020-5982

MEDIUM

CVSS:4.4(Medium)

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) scheduler, in which the software does not properly limit the number or frequency of in...

CWE-7702020

CVE-2021-47130

MEDIUM

CVSS:4.4(Medium)

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix freeing unallocated p2pmem In case p2p device was found but the p2p pool is empty, the nvme target is still trying to fre...

CWE-7702021

CVE-2023-47717

MEDIUM

CVSS:4.4(Medium)

IBM Security Guardium 12.0 could allow a privileged user to perform unauthorized actions that could lead to a denial of service. IBM X-Force ID: 271690.

CWE-7702023

CVE-2024-20968

MEDIUM

CVSS:4.4(Medium)

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.34 and prior and 8.1.0. Difficult to exploit vulnerability allows h...

CWE-7702024

CVE-2024-47967

MEDIUM

CVSS:4.4(Medium)

Improper resource initialization handling in firmware of some Solidigm DC Products may allow an attacker to potentially enable denial of service.

CWE-7702024