Multiple vulnerabilities in Oracle Java

Descrição

Multiple vulnerabilities were found in Oracle Java. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Denial of service vulnerability in JavaFX can be exploited to cause denial of service
2. A remote code execution vulnerability in JavaFX can be exploited remotely to execute arbitrary code
3. A remote code execution vulnerability in 2D can be exploited remotely to execute arbitrary code
4. Denial of service vulnerability in Compiler can be exploited to cause denial of service
5. Information disclosure vulnerability in JSSE can be exploited to obtain sensitive information
6. Information disclosure vulnerability in Networking can be exploited to obtain sensitive information
7. A remote code execution vulnerability in Install can be exploited remotely to execute arbitrary code
8. Denial of service vulnerability in Scripting can be exploited to cause denial of service

Comunicados originais

• Oracle Critical Patch Update Advisory – April 2025

Exploração

Public exploits exist for this vulnerability.

Produtos relacionados

• Oracle-Java-JRE-1.8.x

Lista de CVE

• CVE-2025-27113
  critical
• CVE-2025-24855
  critical
• CVE-2025-30749
  critical
• CVE-2025-30752
  warning
• CVE-2025-30754
  warning
• CVE-2025-50059
  critical
• CVE-2025-50063
  high
• CVE-2025-50106
  critical
• CVE-2025-30761
  high

Saiba mais

Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com