mscve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.9	MS:CVE-2025-53044	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)._MS:CVE-2025-53044 {“lastseen”:”2025-10-24T06:55:32″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 4.9	MS:CVE-2025-53040	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)._MS:CVE-2025-53040 {“lastseen”:”2025-10-24T06:55:32″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 4.9	MS:CVE-2025-53062	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)._MS:CVE-2025-53062 {“lastseen”:”2025-10-24T06:55:32″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2025-53053	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H)._MS:CVE-2025-53053 {“lastseen”:”2025-10-24T06:55:32″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 4.9	MS:CVE-2025-53069	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)._MS:CVE-2025-53069 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 4.9	MS:CVE-2025-53045	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H)._MS:CVE-2025-53045 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2025-53054	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H)._MS:CVE-2025-53054 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-23T01:06:...	N/A	N/A	Oct 23, 2025	MSCVE
HIGH 7.1	MS:CVE-2025-11411	Possible domain hijacking via promiscuous records in the authority section_MS:CVE-2025-11411 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:01:...	N/A	N/A	Oct 24, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2022-49173	spi: fsi: Implement a timeout for polling status_MS:CVE-2022-49173 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:01:...	N/A	N/A	Oct 24, 2025	MSCVE
MEDIUM 5.5	MS:CVE-2022-49469	btrfs: fix anon_dev leak in create_subvol()_MS:CVE-2022-49469 {“lastseen”:”2025-10-24T06:55:31″,”description”:””,”published”:”2025-10-24T01:01:...	N/A	N/A	Oct 24, 2025	MSCVE