CVE-2025-4447

Опубликовано: 09 мая 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

Ссылки

https://github.com/eclipse-openj9/openj9/pull/21762
Issue Tracking
https://gitlab.eclipse.org/security/cve-assignement/-/issues/61
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:eclipse:openj9:*:*:*:*:*:*:*:*

Версия от 0.8.0 (включая) до 0.51.0 (включая)

EPSS

Процентиль: 13%

0.00044

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-121

Связанные уязвимости

CVE-2025-4447

CVSS3: 7

redhat

4 месяца назад

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

GHSA-wmvg-c6fc-33c8

CVSS3: 9.8

github

4 месяца назад

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

SUSE-SU-2025:01954-1

suse-cvrf

2 месяца назад

Security update for java-1_8_0-openj9

SUSE-SU-2025:01788-1

suse-cvrf

3 месяца назад

Security update for java-1_8_0-ibm

SUSE-SU-2025:01770-1

suse-cvrf

3 месяца назад

Security update for java-1_8_0-ibm

EPSS

Процентиль: 13%

0.00044

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-121