Denial of Service Vulnerability in Oracle GraalVM for JDK
CVE-2025-50065

3.7LOW

Key Information:

Vendor

Oracle
Status
Oracle Graalvm For Jdk
Vendor
CVE Published:
15 July 2025

What is CVE-2025-50065?

A vulnerability exists in Oracle GraalVM for JDK that allows unauthenticated attackers with HTTP network access to exploit the system. This flaw enables potential partial denial of service (DoS) conditions, impacting the overall availability of the service. It primarily affects version 24.0.1, highlighting the need for immediate attention from users to safeguard against unauthorized access.

Affected Version(s)

Oracle GraalVM for JDK 24.0.1

References

https://www.oracle.com/security-alerts/cpujul2025.html
vendor-advisory

CVSS V3.1

Score:
3.7
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.