// For flags

CVE-2025-30722

Ubuntu Security Notice USN-7548-1

Severity Score

5.3
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Client accessible data as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N).

Several security issues were discovered in MariaDB and this update includes a new upstream MariaDB version to fix these issues. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Attack Vector
Network
Attack Complexity
High
Authentication
Single
Confidentiality
Complete
Integrity
Complete
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2025-03-25 CVE Reserved
  • 2025-04-15 CVE Published
  • 2025-04-19 CVE Updated
  • 2025-06-28 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://www.oracle.com/security-alerts/cpuapr2025.html 2025-04-15
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Cluster
Search vendor "Oracle Corporation" for product "MySQL Cluster"
 >= 7.6.0 <= 7.6.33
Search vendor "Oracle Corporation" for product "MySQL Cluster" and version " >= 7.6.0 <= 7.6.33"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Cluster
Search vendor "Oracle Corporation" for product "MySQL Cluster"
 >= 8.0.0 <= 8.0.41
Search vendor "Oracle Corporation" for product "MySQL Cluster" and version " >= 8.0.0 <= 8.0.41"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Cluster
Search vendor "Oracle Corporation" for product "MySQL Cluster"
 >= 8.4.0 <= 8.4.4
Search vendor "Oracle Corporation" for product "MySQL Cluster" and version " >= 8.4.0 <= 8.4.4"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Cluster
Search vendor "Oracle Corporation" for product "MySQL Cluster"
 >= 9.0.0 <= 9.2.0
Search vendor "Oracle Corporation" for product "MySQL Cluster" and version " >= 9.0.0 <= 9.2.0"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Client
Search vendor "Oracle Corporation" for product "MySQL Client"
 >= 8.0.0 <= 8.0.41
Search vendor "Oracle Corporation" for product "MySQL Client" and version " >= 8.0.0 <= 8.0.41"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Client
Search vendor "Oracle Corporation" for product "MySQL Client"
 >= 8.4.0 <= 8.4.4
Search vendor "Oracle Corporation" for product "MySQL Client" and version " >= 8.4.0 <= 8.4.4"
en
Affected
Oracle Corporation
Search vendor "Oracle Corporation"
 MySQL Client
Search vendor "Oracle Corporation" for product "MySQL Client"
 >= 9.0.0 <= 9.2.0
Search vendor "Oracle Corporation" for product "MySQL Client" and version " >= 9.0.0 <= 9.2.0"
en
Affected