CVE-2025-50063

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u451 and 8u451-perf

Description An issue exists in the Oracle Java SE Install component that allows a low-privileged attacker with logon access to the infrastructure where Oracle Java SE executes to compromise the software. Successful attacks require human interaction from a person other than the attacker and can result in a takeover of Oracle Java SE. This applies to the installation process on client deployments of Java.

Recommendations Update Oracle Java SE to a version newer than 8u451-perf.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-08911

BIT-JAVA-2025-50063

BIT-JAVA-MIN-2025-50063

BIT-JRE-2025-50063

CVE-2025-50063

Affected Products

Java Platform

Oracle Java Se

CVE-2025-50063

Weakness Enumeration

Related Identifiers

Affected Products

References · 14