Privilege Escalation Vulnerability in PlayStation 4 Firmware by Sony
CVE-2025-64390

Currently unrated

Key Information:

Vendor: Sony
Status: Ps4
Vendor: CVE Published:; 2 June 2026

What is CVE-2025-64390?

A privilege escalation vulnerability has been identified in PlayStation 4 firmware versions 13.00 to 13.02, where attackers can escape the BD-J (Blu-ray Disc Java) sandbox by using specially crafted JAR files. This flaw could potentially allow unauthorized access to system resources, posing significant risks to user security and data integrity.

Affected Version(s)

PS4 13.00 < 13.02

References

https://hackerone.com/reports/3452696

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2026
Vulnerability Reserved
Oct 31, 2025

CVE-2025-64390 Data

JSON