Dereferencing Pointers in Native Code: Vulnerability in OpenJDK + Eclipse OpenJ9 Version 0.11.0 Builds

Dereferencing Pointers in Native Code: Vulnerability in OpenJDK + Eclipse OpenJ9 Version 0.11.0 Builds

CVE-2018-12548 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In OpenJDK + Eclipse OpenJ9 version 0.11.0 builds, the public jdk.crypto.jniprovider.NativeCrypto class contains public static natives which accept pointer values that are dereferenced in the native code.

Learn more about our Web Application Penetration Testing UK.