CVE-2025-50063

📊 7.3 HIGH⚡ 0.0%🎯 0 exploits

📅 Published Jul 15, 2025

📋 Status: Analyzed

Vulnerability in Oracle Java SE (component: Install). The supported version that is affected is Oracle Java SE: 8u451. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Java SE executes to compromise Oracle Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Oracle Java SE. Note: Applies to installation process on client deployment of Java. CVSS 3.1 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H).

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

2 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	oracle	jdk	1.8.0	Vulnerable	cpe:2.3:a:oracle:jdk:1.8.0:update451:::-:::*
📱App	oracle	jre	1.8.0	Vulnerable	cpe:2.3:a:oracle:jre:1.8.0:update451:::-:::*

📱

oracle / jdk

Application

Vulnerable

Version: 1.8.0

CPE:

cpe:2.3:a:oracle:jdk:1.8.0:update451:*:*:-:*:*:*

📱

oracle / jre

Application

Vulnerable

Version: 1.8.0

CPE:

cpe:2.3:a:oracle:jre:1.8.0:update451:*:*:-:*:*:*

Metrics

7.3 HIGHCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

LOW

User Interaction:

REQUIRED

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

7.3 (HIGH)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)11.6th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Jul 15, 2025 (3 months ago)

Last Modified

Aug 4, 2025 (3 months ago)

Security Weaknesses1

References2

NVDgeneral