CVE-2025-4447

Опубликовано: 09 мая 2025

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

Ссылки

https://github.com/eclipse-openj9/openj9/pull/21762
Issue Tracking
https://gitlab.eclipse.org/security/cve-assignement/-/issues/61
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:eclipse:openj9:*:*:*:*:*:*:*:*

Версия от 0.8.0 (включая) до 0.51.0 (включая)

EPSS

Процентиль: 20%

0.00063

Низкий

7.8 High

CVSS3

Дефекты

CWE-121

Связанные уязвимости

CVE-2025-4447

CVSS3: 7

redhat

8 месяцев назад

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

GHSA-wmvg-c6fc-33c8

CVSS3: 9.8

github

8 месяцев назад

In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

SUSE-SU-2025:01954-1

suse-cvrf

6 месяцев назад

Security update for java-1_8_0-openj9

SUSE-SU-2025:01788-1

suse-cvrf

7 месяцев назад

Security update for java-1_8_0-ibm

SUSE-SU-2025:01770-1

suse-cvrf

7 месяцев назад

Security update for java-1_8_0-ibm

EPSS

Процентиль: 20%

0.00063

Низкий

7.8 High

CVSS3

Дефекты

CWE-121