Login Sign Up

CVE-2025-53069

4.9 MEDIUM
Denial of Service

📋 TL;DR

This vulnerability in Oracle MySQL Server allows high-privileged attackers with network access to cause a denial of service (DoS) by crashing or hanging the server. It affects MySQL Server versions 8.0.0-8.0.43, 8.4.0-8.4.6, and 9.0.0-9.4.0. Attackers need high privileges but can exploit it via multiple network protocols.

💻 Affected Systems

Products:
  • Oracle MySQL Server
Versions: 8.0.0-8.0.43, 8.4.0-8.4.6, 9.0.0-9.4.0
Operating Systems: All platforms running affected MySQL versions
Default Config Vulnerable: ⚠️ Yes
Notes: Affects the Server: Components Services component. Requires high-privilege attacker account (PR:H).

📦 What is this software?

Mysql Server by Oracle

View all CVEs affecting Mysql Server →

Mysql Server by Oracle

View all CVEs affecting Mysql Server →

Mysql Server by Oracle

View all CVEs affecting Mysql Server →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete unavailability of MySQL Server leading to application downtime and service disruption.

🟠

Likely Case

Targeted DoS attacks against vulnerable MySQL instances by malicious insiders or compromised high-privilege accounts.

🟢

If Mitigated

Minimal impact if proper access controls and network segmentation are implemented.

🌐 Internet-Facing: MEDIUM - Requires high privileges but network-accessible services are vulnerable to DoS.
🏢 Internal Only: MEDIUM - Internal attackers with high privileges can cause service disruption.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

CVSS indicates 'easily exploitable' but requires high privileges. No public exploit details available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply patches from Oracle's October 2025 Critical Patch Update

Vendor Advisory: https://www.oracle.com/security-alerts/cpuoct2025.html

Restart Required: Yes

Instructions:

1. Review Oracle's October 2025 Critical Patch Update advisory. 2. Apply the appropriate patch for your MySQL version. 3. Restart MySQL service. 4. Verify patch application.

🔧 Temporary Workarounds

Restrict Network Access

all

Limit network access to MySQL Server to only trusted hosts and applications.

Configure firewall rules to restrict MySQL port (default 3306) access

Principle of Least Privilege

all

Review and reduce high-privilege accounts to minimize attack surface.

REVOKE unnecessary privileges from MySQL users
Review GRANT statements for excessive permissions

🧯 If You Can't Patch

  • Implement strict network segmentation and firewall rules to limit MySQL access
  • Enforce principle of least privilege for all MySQL user accounts

🔍 How to Verify

Check if Vulnerable:

Check MySQL version against affected ranges: SELECT VERSION();

Check Version:

SELECT VERSION();

Verify Fix Applied:

Verify version is patched: SELECT VERSION(); and confirm it's outside affected ranges

📡 Detection & Monitoring

Log Indicators:

  • Unexpected MySQL service crashes or hangs
  • Error logs showing abnormal termination
  • Multiple connection attempts from high-privilege accounts

Network Indicators:

  • Unusual traffic patterns to MySQL port from internal sources
  • Multiple protocol attempts to MySQL service

SIEM Query:

source="mysql.log" AND ("crash" OR "hang" OR "abnormal shutdown")

📊 Metadata

CVE ID: CVE-2025-53069
CVSS v3 Score: 4.9 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-770
EPSS Score: 0.05% exploit probability (15th percentile)
Published: October 21, 2025
Last Updated: October 24, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-53069, you might also want to check these:

CVE-2024-44241 9.8

This vulnerability in DCP firmware allows attackers to execute arbitrary code or cause system crashe...

Same vulnerability type (CWE-770)
CVE-2025-11832 9.8

This CVE describes a resource allocation vulnerability in Azure Access Technology BLU-IC2 and BLU-IC...

Same vulnerability type (CWE-770)
CVE-2021-47875 9.8

GeoGebra CAS Calculator 6.0.631.0 contains a buffer overflow vulnerability that allows attackers to ...

Same vulnerability type (CWE-770)