Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistEclipseCVELIST:CVE-2018-12539
HistoryAug 14, 2018 - 7:00 p.m.

CVE-2018-12539

2018-08-1419:00:00
CWE-419
eclipse
www.cve.org

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON

In Eclipse OpenJ9 version 0.8, users other than the process owner may be able to use Java Attach API to connect to an Eclipse OpenJ9 or IBM JVM on the same machine and use Attach API operations, which includes the ability to execute untrusted native code. Attach API is enabled by default on Windows, Linux and AIX JVMs and can be disabled using the command line option -Dcom.ibm.tools.attach.enable=no.

CNA Affected

[
  {
    "product": "Eclipse OpenJ9",
    "vendor": "The Eclipse Foundation",
    "versions": [
      {
        "status": "affected",
        "version": "0.8"
      }
    ]
  }
]

Related

nvd 1
veracode 1
ibm 119
cve 1
osv 1
prion 1
redhatcve 1
nessus 15
openvas 7
redhat 6
aix 1
oracle 1
nvd
nvd
CVE-2018-12539
2018-08-14 19:29:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:24:36
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Algo One
2018-12-05 19:50:02
Security Bulletin: A vulnerability in IBM Java SDK affects IBM Spectrum Scale packaged in IBM Elastic Storage Server (CVE-2018-12539)
2018-11-27 17:05:01
Security Bulletin: A vulnerability in IBM Java SDK affects IBM Spectrum Scale
2018-10-30 07:05:02
cve
cve
CVE-2018-12539
2018-08-14 19:29:00
osv
osv
CVE-2018-12539
2018-08-14 19:29:00
prion
prion
Default configuration
2018-08-14 19:29:00
redhatcve
redhatcve
CVE-2018-12539
2019-10-10 23:34:49
nessus
nessus
RHEL 6 : java-1.7.1-ibm (RHSA-2018:2712)
2018-09-18 00:00:00
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2018:2583-1)
2018-09-04 00:00:00
RHEL 6 : java-1.7.1-ibm (RHSA-2018:2576)
2018-08-29 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:2649-2)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2574-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2583-1)
2021-06-09 00:00:00
redhat
redhat
(RHSA-2018:2576) Important: java-1.7.1-ibm security update
2018-08-28 19:07:03
(RHSA-2018:2569) Important: java-1.7.1-ibm security update
2018-08-27 14:10:03
(RHSA-2018:2712) Moderate: java-1.7.1-ibm security update
2018-09-17 14:42:53
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2018-09-19 08:42:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.3%

JSON
Related for CVELIST:CVE-2018-12539
nvd1veracode1ibm119cve1osv1prion1redhatcve1nessus15openvas7redhat6aix1oracle1