Lucene search
Veracode Vulnerability DatabaseVERACODE:18615HistoryMay 02, 2019 - 6:45 a.m.
Privilege Escalation
2019-05-0206:45:12
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
EPSS
0.007
Percentile
80.7%
IBM is vulnerable to privilege escalation attacks. An attacker could exploit a flaw in the IBM J9 VM class verifier which allows untrusted code to disable the security manager and elevate its privileges.
References
www.ibm.com/support/docview.wss?uid=swg22007305&myns=swgtiv&mynp=OCSSJQQ3&mync=E&cm_sp=swgtiv-_-OCSSJQQ3-_-E
access.redhat.com/errata/RHSA-2017:2469
access.redhat.com/errata/RHSA-2017:2481
access.redhat.com/security/cve/CVE-2017-1376
access.redhat.com/security/updates/classification/#critical
developer.ibm.com/javasdk/support/security-vulnerabilities/
exchange.xforce.ibmcloud.com/vulnerabilities/126873
Related
prion
prion
Code injection
2017-08-29 01:35:00
nessus
nessus
IBM Java 6.1 < 6.1.8.50 / 7.0 < 7.0.10.10 / 7.1 < 7.1.4.10 / 8.0 < 8.0.4.7
2022-04-29 00:00:00
RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2017:2481)
2017-08-17 00:00:00
RHEL 6 / 7 : java-1.8.0-ibm (RHSA-2017:2469)
2017-08-15 00:00:00
cve
cve
CVE-2017-1376
2017-08-29 01:35:13
ubuntucve
ubuntucve
CVE-2017-1376
2017-08-29 00:00:00
cvelist
cvelist
CVE-2017-1376
2017-08-28 20:00:00
nvd
nvd
CVE-2017-1376
2017-08-29 01:35:13
redhatcve
redhatcve
CVE-2017-1376
2017-08-21 20:18:47
ibm
ibm
redhat
redhat
(RHSA-2017:2481) Critical: java-1.7.1-ibm security update
2017-08-15 19:33:56
(RHSA-2017:2469) Critical: java-1.8.0-ibm security update
2017-08-14 09:26:06
aix
aix
There are multiple vulnerabilities in IBM SDK Java Technology Edition
2017-09-01 08:58:20