Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM18A19ABECA9E9178C73F40F8141C3DD8DACE26A7D04179C36D03B30C9CE00306
HistoryJun 16, 2023 - 7:07 p.m.

Security Bulletin: Vulnerability in Eclipse OpenJ9 affects Rational Performance Tester (CVE-2022-3676)

2023-06-1619:07:26
www.ibm.com
10
eclipse openj9
rational performance tester
cve-2022-3676
vulnerability
remote attacker
security restrictions
crafted requests
memory access

0.001 Low

EPSS

Percentile

48.2%

JSON

Summary

There is a vulnerability in Eclipse OpenJ9 used by Rational Performance Tester. Rational Performance Tester has addressed the applicable CVEs.

Vulnerability Details

CVEID:CVE-2022-3676
**DESCRIPTION:**Eclipse Openj9 could allow a remote attacker to bypass security restrictions, caused by improper runtime type check by the interface calls. By sending a specially-crafted request using bytecode, an attacker could exploit this vulnerability to access or modify memory.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/239608 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
RPT 10.5
RPT 10.2
RPT 10.1
RPT 10.0

Remediation/Fixes

It is strongly recommended to upgrade to Rational Performance Tester version 10.5.2.

Workarounds and Mitigations

None

Related

prion 1
ibm 66
nessus 5
cve 1
osv 1
cvelist 1
openvas 4
aix 1
prion
prion
Design/Logic Flaw
2022-10-24 14:15:00
ibm
ibm
Security Bulletin: IBM Content Manager Enterprise Edition is affected by a vulnerability in Eclipse Openj9
2023-04-28 09:40:03
Security Bulletin: A security vulnerability has been identified in IBM® SDK, Java™ Technology Edition shipped with IBM Tivoli Business Service Manager (CVE-2022-3676)
2022-12-06 16:12:30
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager (CVE-2022-3676)
2023-02-03 15:20:47
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : java-1_8_0-ibm (SUSE-SU-2023:0375-1)
2023-02-14 00:00:00
IBM Java 7.0 < 7.0.11.15 / 7.1 < 7.1.5.15 / 8.0 < 8.0.7.20
2022-11-16 00:00:00
SUSE SLES12 Security Update : java-1_8_0-ibm (SUSE-SU-2022:4602-1)
2022-12-23 00:00:00
cve
cve
CVE-2022-3676
2022-10-24 14:15:00
osv
osv
CVE-2022-3676
2022-10-24 14:15:51
cvelist
cvelist
CVE-2022-3676
2022-10-24 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:4591-1)
2022-12-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0375-1)
2023-02-13 00:00:00
openSUSE: Security Advisory for java (SUSE-SU-2023:0375-1)
2024-03-04 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2022-12-22 10:09:37

0.001 Low

EPSS

Percentile

48.2%

JSON
Related for 18A19ABECA9E9178C73F40F8141C3DD8DACE26A7D04179C36D03B30C9CE00306
prion1ibm66nessus5cve1osv1cvelist1openvas4aix1