EUVD-2025-22483

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

A malicious user can escalate to SYS-level access in Oracle mode of OceanBase via crafted commands

Reporter	Title	Published	Views	Family All 7
CNNVD	Oracle GoldenGate 安全漏洞	24 Jul 202500:00	–	cnnvd
CVE	CVE-2025-8107	24 Jul 202507:12	–	cve
Cvelist	CVE-2025-8107	24 Jul 202507:12	–	cvelist
NVD	CVE-2025-8107	24 Jul 202508:15	–	nvd
Positive Technologies	PT-2025-30639 · Oceanbase · Oceanbase	24 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-8107	26 Jul 202507:26	–	redhatcve
Vulnrichment	CVE-2025-8107	24 Jul 202507:12	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "a8eb209d-a63d-38b9-a61a-1203547a0272",
        "vendor": {
          "name": "OB"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1723f443-8370-31d2-b56e-c98613cbc787",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "3.2.4.x <3.2.4.8"
      },
      {
        "id": "2d9728be-c5cc-3a55-b93e-ef47a4e8d275",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "4.2.1 x <4.2.1.10"
      },
      {
        "id": "6307ce12-8aac-3b2d-8d51-ff1fee0c0094",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": ""
      },
      {
        "id": "9dd13d46-a507-317e-9c13-cba76c085c0b",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "3.x <3.2.4.9"
      },
      {
        "id": "bc19f1f7-e8e7-3524-a586-963e63843cc8",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "4.3.3.x <4.3.3.2"
      },
      {
        "id": "d022ce2b-0c7e-3b20-b997-f3a82c54061a",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "3.2.4.x <3.2.4.9"
      },
      {
        "id": "e3863798-2211-3c0a-a1bb-07ce654a885c",
        "product": {
          "name": "OceanBase Server"
        },
        "product_version": "4.2.x <4.2.5"
      }
    ]
  }
]

Source	Link
github	www.github.com/oceanbase/oceanbase/security

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.3

EPSS0.00317

SSVC