CVE-2025-53057
Description
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 and 21.0.8; Oracle GraalVM Enterprise Edition: 21.3.15. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A difficult-to-exploit vulnerability in Oracle Java SE and GraalVM allows an unauthenticated, network-based attacker to compromise data integrity via the Security component.
Root
Cause
CVE-2025-53057 is a vulnerability in the Security component of Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition. The affected versions include Oracle Java SE 8u461, 11.0.28, 17.0.16, 21.0.8, 25, and corresponding GraalVM releases. The vulnerability is difficult to exploit and requires network access via multiple protocols, but does not require authentication [1].
Exploitation
An unauthenticated attacker with network access can exploit this vulnerability by supplying data to APIs in the affected component, for example through a web service. The attack complexity is high, meaning successful exploitation likely requires specific conditions or chaining with other weaknesses. The vulnerability can also be triggered in sandboxed Java environments, such as Java Web Start applications or applets that load untrusted code from the internet, where the Java sandbox is relied upon for security [1].
Impact
Successful exploitation of this vulnerability results in unauthorized creation, deletion, or modification of critical data accessible to Oracle Java SE or GraalVM. The CVSS v3.1 base score is 5.9 (Medium), with the vector indicating no impact to confidentiality or availability, but a high impact to integrity. An attacker could therefore corrupt or manipulate data without needing to authenticate [1].
Mitigation
Oracle has released security patches for the affected products as part of their Critical Patch Update. Users are strongly advised to apply the latest updates from Oracle. Siemens has also listed this CVE among those affecting SIMATIC CN 4100 products prior to version V5.0, indicating that the vulnerability may impact certain embedded Java environments and should be addressed by updating to the fixed version [1].
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
6- Range: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25
- Range: 17.0.16, 21.0.8
- Range: 21.3.15
- Oracle Corporation/Oracle GraalVM Enterprise Editionv5Range: 21.3.15
- Oracle Corporation/Oracle GraalVM for JDKv5Range: 17.0.16
- Oracle Corporation/Oracle Java SEv5Range: 8u461
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
1- Siemens SIMATICCISA ICS Advisories