How severe is CVE-2025-21520?

This vulnerability has a severity rating of LOW with a CVSS score of 1.8 out of 10.

What type of vulnerability is CVE-2025-21520?

This is classified as CWE-732, which is a common weakness in software security.

CVE-2025-21520 - LOW Severity | CVSS 1.8

Vulnerability Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 1.8 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N).

Related Vulnerabilities

CVE-2018-12217

LOW

CVSS:2.3(Low)

Insufficient access control in Kernel Mode Driver in Intel(R) Graphics Driver for Windows* before versions 10.18.x.5059 (aka 15.33.x.5059), 10.18.x.5057 (aka 15.36.x.5057), 20.19.x.5063 (aka 15.40.x.5...

CWE-7322018

CVE-2024-52328

LOW

CVSS:2.3(Low)

ECOVACS robot lawnmowers and vacuums insecurely store audio files used to indicate that the camera is on. An attacker with access to the /data filesystem can delete or modify warning files such that u...

CWE-7322024

CVE-2018-4238

LOW

CVSS:2.4(Low)

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection m...

CWE-7322018

CVE-2018-7924

LOW

CVSS:2.4(Low)

Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak vulnerability. Due to improper permission settings for specific commands, attackers who can connect to a mobi...

CWE-7322018

CVE-2025-20233

LOW

CVSS:2.5(Low)

In the Splunk App for Lookup File Editing versions below 4.0.5, a script in the app used the `chmod` and `makedirs` Python functions in a way that resulted in overly broad read and execute permissions...

CWE-7322025

CVE-2012-1160

LOW

CVSS:2.7(Low)

Moodle before 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php

CWE-7322012