8 matches found
EUVD-2019-7949
Malware in sbrugna...
CVE-2022-3676
In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type check. Malicious bytecode could make use of this inlining to access or modify memory via an incompatible type...
CVE-2025-4447
CVE-2025-4447 concerns Eclipse OpenJ9: when used with OpenJDK 8, OpenJ9 versions up to 0.51 may experience a stack-based buffer overflow caused by modifying a file on disk that is read at JVM startup. The IBM/Cloud Pak security notes in the connected documents corroborate that this CVE is referen...
Security Bulletin: IBM Workload Scheduler potentially affected by vulnerability in Eclipse Openj9 (CVE-2021-41041)
Summary Eclipse Openj9 is vulnerable to attacks bypassing security restrictions that can potentially affect IBM Workload Scheduler 9.5 and IBM Workload Scheduler 10.1 Vulnerability Details CVEID:CVE-2021-41041 DESCRIPTION: Eclipse Openj9 could allow a remote attacker to bypass security...
Unspecified Vulnerability in Eclipse OpenJ9
Eclipse OpenJ9 is a Java application engine from the Eclipse Foundation. The product is primarily used to run Java applications. A security vulnerability exists in Eclipse Openj9 version 0.25, which stems from the fact that the jdk.internal.reflect.ConstantPool API causes the JVM to pre-parse...
Security Bulletin: A vulnerability in IBM Java affects IBM ILOG CPLEX Optimization Studio (CVE-2020-27221)
Summary There is a vulnerability in IBM® Java™ versions 7 & 8 used by IBM CPLEX Optimization Studio. IBM CPLEX Optimization Studio has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-27221 DESCRIPTION: Eclipse OpenJ9 is vulnerable to a stack-based buffer overflow when the...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 1.8 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. Vulnerability Details CVEID: CVE-2020-14621...
The vulnerability of the String.getBytes(int, int, byte[], int) method in the Eclipse OpenJ9 virtual machine allows a attacker to execute arbitrary code.
The vulnerability of the String.getBytesint, int, byte, int method in the Eclipse OpenJ9 virtual machine is related to writing data beyond the buffer boundaries. Exploiting this vulnerability may allow a malicious actor to execute arbitrary code remotely...