CVE-2025-50063
BaseFortify
Publication date: 2025-07-15
Last updated on: 2025-08-04
Assigner: Oracle
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| oracle | jdk | 1.8.0 |
| oracle | jre | 1.8.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
If exploited, this vulnerability can lead to a complete takeover of Oracle Java SE, impacting confidentiality, integrity, and availability of the system. This means sensitive data could be exposed or altered, and the availability of Java SE services could be disrupted.
Can you explain this vulnerability to me?
This vulnerability exists in the installation component of Oracle Java SE versions 8u451 and 8u451-perf. It allows a low privileged attacker who has logged onto the system where Oracle Java SE runs to potentially compromise the Java SE installation. Exploiting this vulnerability requires human interaction from someone other than the attacker. If successfully exploited, the attacker can take over Oracle Java SE.