21Oca
CVE-2025-21501 | Oracle MySQL Server up to 8.0.40/8.4.3/9.1.0 Optimizer improper authorization
A vulnerability, which was classified as critical, was found in Oracle MySQL Server up to 8.0.40/8.4.3/9.1.0. Affected is an unknown function of the component Optimizer. The manipulation leads to improper authorization. This vulnerability is traded as CVE-2025-21501. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.