CVE-2018-12548 is a vulnerability in Eclipse Openj9
Published on January 31, 2019
In OpenJDK + Eclipse OpenJ9 version 0.11.0 builds, the public jdk.crypto.jniprovider.NativeCrypto class contains public static natives which accept pointer values that are dereferenced in the native code.
Weakness Type
Untrusted Pointer Dereference
The program obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.
Products Associated with CVE-2018-12548
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-12548 are published in Eclipse Openj9:
Affected Versions
The Eclipse Foundation Eclipse OpenJ9 Version 0.11.0 is affected by CVE-2018-12548Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.