Описание
Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | java-1.5.0-ibm | Not affected | ||
| Red Hat Enterprise Linux 6 | java-1.6.0-ibm | Not affected | ||
| Red Hat Satellite 5 | java-1.7.1-ibm | Affected | ||
| Red Hat Enterprise Linux 6 Supplementary | java-1.8.0-ibm | Fixed | RHSA-2018:0352 | 26.02.2018 |
| Red Hat Enterprise Linux 6 Supplementary | java-1.7.1-ibm | Fixed | RHSA-2018:0521 | 14.03.2018 |
| Red Hat Enterprise Linux 7 Supplementary | java-1.8.0-ibm | Fixed | RHSA-2018:0351 | 26.02.2018 |
| Red Hat Enterprise Linux 7 Supplementary | java-1.7.1-ibm | Fixed | RHSA-2018:0458 | 07.03.2018 |
| Red Hat Satellite 5.8 | java-1.8.0-ibm | Fixed | RHSA-2018:1463 | 15.05.2018 |
Показывать по
10
Дополнительная информация
Статус:
Critical
https://bugzilla.redhat.com/show_bug.cgi?id=1568966JDK: J9 JVM allows untrusted code running under a security manager to elevate its privileges
EPSS
Процентиль: 80%
0.01417
Низкий
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 8.1
nvd
почти 8 лет назад
Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.
CVSS3: 8.1
github
больше 3 лет назад
Under certain circumstances, a flaw in the J9 JVM (IBM SDK, Java Technology Edition 7.1 and 8.0) allows untrusted code running under a security manager to elevate its privileges. IBM X-Force ID: 138823.
EPSS
Процентиль: 80%
0.01417
Низкий
7.5 High
CVSS3