In Eclipse Openj9 before version 0.32.0, Java 8 & 11 fail to throw the exception captured during bytecode verification when verification is triggered by a MethodHandle invocation, allowing unverified methods to be invoked using MethodHandles.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
eclipse openj9 |
||
oracle java se 8 |
||
oracle java se 11 |