The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
A flaw in the IBM J9 VM class verifier allows untrusted code to disable the security manager and elevate its privileges. IBM X-Force ID: 126873.
Base Score: 7.5
Impact Score: 6.4
Exploitability Score: 10
Base Score: 9.8
Impact Score: 5.9
Exploitability Score: 3.9
|103191||AIX Java Advisory : java_july2017_advisory.asc (July 2017 CPU)||Nessus||AIX Local Security Checks|
|102536||RHEL 6 / 7 : java-1.7.1-ibm (RHSA-2017:2481)||Nessus||Red Hat Local Security Checks|
|102492||RHEL 6 / 7 : java-1.8.0-ibm (RHSA-2017:2469)||Nessus||Red Hat Local Security Checks|