449 matches found
IBM JVM Buffer Overflow Vulnerability
IBM WebSphere Real Time is a Java runtime environment and development suite from IBM.IBM JVM Java Virtual Machine is a Java virtual machine. A buffer overflow vulnerability exists in IBM JVM. An attacker can exploit this vulnerability to execute arbitrary code...
JDK: buffer overflow vulnerability in the IBM JVM
Buffer overflow in the Java Virtual Machine JVM in IBM SDK, Java Technology Edition 6 before SR16 FP25 6.0.16.25, 6 R1 before SR8 FP25 6.1.8.25, 7 before SR9 FP40 7.0.9.40, 7 R1 before SR3 FP40 7.1.3.40, and 8 before SR3 8.0.3.0 allows remote attackers to execute arbitrary code via unspecified...
JDK: buffer overflow vulnerability in the IBM JVM
Buffer overflow in the Java Virtual Machine JVM in IBM SDK, Java Technology Edition 6 before SR16 FP25 6.0.16.25, 6 R1 before SR8 FP25 6.1.8.25, 7 before SR9 FP40 7.0.9.40, 7 R1 before SR3 FP40 7.1.3.40, and 8 before SR3 8.0.3.0 allows remote attackers to execute arbitrary code via unspecified...
Unspecified Vulnerability in Oracle Database Server Java VM Component
Oracle Database Server is the United States Oracle Oracle company's set of relational database management system. Java VM is one of the Java virtual machine components. An unspecified vulnerability exists in the Java VM component of Oracle Database Server, which can be exploited by remote attacke...
CVE-2016-3454
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...
JDK: J9 JVM allows code to invoke non-public interface methods
The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods...
JDK: J9 JVM allows code to invoke non-public interface methods
The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods...
The vulnerability of the Oracle Database database management system allows a hacker to execute arbitrary code.
The vulnerability of the Java VM component of the Oracle Database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely through network packets...
The vulnerability of the Oracle Database database management system allows a hacker to execute arbitrary code with administrator privileges.
The vulnerability of the Java VM component of the Oracle Database management system is related to errors in the code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with administrator privileges remotely...
The vulnerability of the Oracle Database database management system allows a hacker to trigger a service failure.
The vulnerability of the Java VM component of the Oracle Database management system is related to errors in the code. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...
jre8-openjdk: multiple issues
CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...
jdk7-openjdk: multiple issues
CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...
[SECURITY] Fedora 22 Update: groovy-2.4.0-2.fc22
Groovy is an agile and dynamic language for the Java Virtual Machine, built upon Java with features inspired by languages like Python, Ruby and Smalltalk. It seamlessly integrates with all existing Java objects and libraries and compiles straight to Java bytecode so you can use it anywhere you ca...
Oracle Database Java VM Component Elevation of Privilege Vulnerability
Oracle Database is a large database of commercial nature. A security vulnerability exists in the Oracle Database Java VM component that allows authenticated users to elevate privileges...
CVE-2015-1914
IBM Java 7 R1 before SR3, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to bypass "permission checks" and obtain sensitive information via vectors related to the Java Virtual Machine...
Design/Logic Flaw
IBM Java 7 R1 before SR3, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to bypass "permission checks" and obtain sensitive information via vectors related to the Java Virtual Machine...
CVE-2015-0192
Technical details for CVE-2015-0192 are not provided in the connected documents. The initial description names IBM Java vulnerabilities but does not specify affected products, versions, vectors, or fixes in the supplied sources. Monitor for updates.
CVE-2015-0192
Unspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to gain privileges via unknown vectors related to the Java Virtual Machine...
JDK: unspecified Java sandbox restrictions bypass
Unspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to gain privileges via unknown vectors related to the Java Virtual Machine...
Thermostat User Certificate Acquisition Vulnerability
Thermostat is a suite of monitoring instrumentation tools that support monitoring multiple JVM instances in OpenJDK HotSpot virtual machines. Thermostat failed to properly set web.xml file permissions, allowing a local attacker to obtain user credentials by reading the file...