CVE-2017-1376

CRITICAL

IBM J9 VM - Privilege Escalation

Title source: llm
STIX 2.1

Description

A flaw in the IBM J9 VM class verifier allows untrusted code to disable the security manager and elevate its privileges. IBM X-Force ID: 126873.

References (4)

Scores

CVSS v3 9.8
EPSS 0.0082
EPSS Percentile 74.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-829
Status published
Products (12)
IBM/Operations Analytics Predictive Insights 1.3.0
IBM/Operations Analytics Predictive Insights 1.3.1
IBM/Operations Analytics Predictive Insights 1.3.2
IBM/Operations Analytics Predictive Insights 1.3.3
IBM/Operations Analytics Predictive Insights 1.3.5
IBM/Operations Analytics Predictive Insights 1.3.6
ibm/operations_analytics_predictive_insights 1.3.0
ibm/operations_analytics_predictive_insights 1.3.1
ibm/operations_analytics_predictive_insights 1.3.2
ibm/operations_analytics_predictive_insights 1.3.3
... and 2 more
Published Aug 29, 2017
Tracked Since Feb 18, 2026