If you click on a link and make a purchase we may receive a small commission. Read our editorial policy.

Microsoft warns of security vulnerability in Minecraft Java

Users must update now to secure their game.

Microsoft has urged all Minecraft Java owners to update their game now to avoid a nasty security vulnerability.

The issue allows for remote code execution on Minecraft servers by pasting messages into a chat box, and was flagged online by tech security analysts last Friday. Eurogamer contacted Microsoft at the time.

On Sunday, Microsoft responded with a blog post on the Minecraft blog, and told all Java users to update their games immediately.

For most, this will be as simple as restarting their games to get the new update - but those on modified clients and third-party launchers may need to do more. There's more details on the Minecraft blog.

"Player safety is the top priority for us," Microsoft wrote in a tweet from the official Minecraft account. "Unfortunately, earlier today we identified a security vulnerability in Minecraft: Java Edition.

"The issue is patched, but please follow these steps to secure your game client and/or servers. Please RT to amplify."

There's no known issue associated with the Bedrock version of the Minecraft available for Windows 10 and 11, as well as consoles.

From Assassin's Creed to Zoo Tycoon, we welcome all gamers

Eurogamer welcomes videogamers of all types, so sign in and join our community!

In this article
Follow a topic and we'll email you when we write an article about it.
Related topics
About the Author
Tom Phillips avatar

Tom Phillips


Tom is Eurogamer's Editor-in-Chief. He writes lots of news, some of the puns and makes sure we put the accent on Pokémon. Tom joined Eurogamer in 2010 following a stint running a Nintendo fansite, and still owns two GameCubes. He also still plays Pokémon Go every day.