Information Disclosure and Data Injection Vulnerability in J9 JVM

Information Disclosure and Data Injection Vulnerability in J9 JVM

CVE-2015-5041 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

The J9 JVM in IBM SDK, Java Technology Edition 6 before SR16 FP20, 6 R1 before SR8 FP20, 7 before SR9 FP30, and 7 R1 before SR3 FP30 allows remote attackers to obtain sensitive information or inject data by invoking non-public interface methods.

Learn more about our Cis Benchmark Audit For Ibm I.