21Oca
CVE-2025-21504 | Oracle MySQL Server up to 8.0.39/8.4.2/9.0.1 Optimizer improper authorization
A vulnerability classified as critical has been found in Oracle MySQL Server up to 8.0.39/8.4.2/9.0.1. Affected is an unknown function of the component Optimizer. The manipulation leads to improper authorization. This vulnerability is traded as CVE-2025-21504. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.