BIT-java-min-2025-50063

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/java-min/BIT-java-min-2025-50063.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-java-min-2025-50063

Aliases

Published

2026-05-06T14:45:40.224Z

Modified

2026-05-08T07:56:09.991569525Z

Summary

[none]

Details

Vulnerability in Oracle Java SE (component: Install). The supported version that is affected is Oracle Java SE: 8u451. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Java SE executes to compromise Oracle Java SE. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Oracle Java SE. Note: Applies to installation process on client deployment of Java. CVSS 3.1 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H).

Database specific

{
    "severity": "High",
    "cpes": [
        "cpe:2.3:a:bellsoft:libericajdk:*:*:*:*:*:*:*:*"
    ]
}

References

Affected packages

Bitnami / java-min

Package

Name: java-min
Purl: pkg:bitnami/java-min

Severity

7.3 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.8.0

Introduced

1.9.0

Fixed

8.0.461

Database specific

source

"https://github.com/bitnami/vulndb/tree/main/data/java-min/BIT-java-min-2025-50063.json"