{
  "metadata": {
    "@context": "https://openvex.dev/ns/v0.2.0",
    "@id": "https://packages.broadcom.com/photon/photon_cve_metadata/cve/2025/CVE-2025-30754",
    "author": "VMware Photon OS",
    "timestamp": "2026-04-22T05:34:27.623290",
    "version": 1
  },
  "statements": [
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2025-30754",
        "name": "CVE-2025-30754"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/openjdk21@21.0.8-1.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21@21.0.8-1.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-jre@21.0.8-1.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-jre@21.0.8-1.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-doc@21.0.8-1.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-doc@21.0.8-1.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-src@21.0.8-1.ph4?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-src@21.0.8-1.ph4?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21@21.0.8-1.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21@21.0.8-1.ph5?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-jre@21.0.8-1.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-jre@21.0.8-1.ph5?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-doc@21.0.8-1.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-doc@21.0.8-1.ph5?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-src@21.0.8-1.ph5?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk21-src@21.0.8-1.ph5?arch=aarch64"
        }
      ],
      "status": "fixed",
      "status_notes": "Most of these affect only jdk-11.0.27 and CVE-2023-22025 was also fixed long back"
    },
    {
      "vulnerability": {
        "@id": "https://nvd.nist.gov/vuln/detail/CVE-2025-30754",
        "name": "CVE-2025-30754"
      },
      "products": [
        {
          "@id": "pkg:rpm/photon/openjdk11?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-jre?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-jre?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-doc?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-doc?arch=aarch64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-src?arch=x86_64"
        },
        {
          "@id": "pkg:rpm/photon/openjdk11-src?arch=aarch64"
        }
      ],
      "status": "not_affected",
      "status_notes": "Most of these affect only jdk-11.0.27 and CVE-2023-22025 was also fixed long back"
    }
  ]
}