{"id":"CVE-2019-17631","details":"From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks.","modified":"2026-05-18T05:50:40.880654620Z","published":"2019-10-17T18:15:12.813Z","related":["SUSE-SU-2020:0001-1","SUSE-SU-2020:0024-1"],"database_specific":{"unresolved_ranges":[{"cpes":["cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:enterprise_linux","extracted_events":[{"last_affected":"8.0"}]},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:enterprise_linux_desktop","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}]},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:enterprise_linux_eus","extracted_events":[{"last_affected":"8.1"}]},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:enterprise_linux_server","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}]},{"cpes":["cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*","cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:enterprise_linux_workstation","extracted_events":[{"last_affected":"6.0"},{"last_affected":"7.0"}]},{"cpes":["cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*"],"source":"CPE_FIELD","vendor_product":"redhat:satellite","extracted_events":[{"last_affected":"5.8"}]}]},"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4113"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4115"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0006"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0046"},{"type":"REPORT","url":"https://bugs.eclipse.org/bugs/show_bug.cgi?id=552129"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/eclipse-openj9/openj9","events":[{"introduced":"4a7a6b2b1e74c15ddbe8fea47e3d3fba21f91cd6"},{"last_affected":"867dab457f2ca8110d65599ed5ad2e785f0b6a3a"}],"database_specific":{"cpe":"cpe:2.3:a:eclipse:openj9:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0.15.0"},{"last_affected":"0.16.0"}]}}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-17631.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"}]}