216.73.217.64

CVE-2025-50063

· Published 15/07/2025 20:15 · Modified 16/07/2025 19:15

Labels: CVE-2025-50063 2025-07-15CVE-2025-50063[email protected]

Essential information

Published
15/07/2025 20:15
Modified
16/07/2025 19:15
Author
Creator
CVSS
7.3 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

Vulnerability in Oracle Java SE (component: Install). The supported version that is affected is Oracle Java SE: 8u451. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Java SE executes to compromise Oracle Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Oracle Java SE. Note: Applies to installation process on client deployment of Java. CVSS 3.1 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H).

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
oracle / java se cpe:2.3:a:oracle:java_se:8u451:*:*:*:*:*:*:*
oracle / java se cpe:2.3:a:oracle:java_se:8u451-perf:*:*:*:*:*:*:*

References