Skip to main content

Jansi CVE-2026-8484

| EUVDEUVD-2026-37064 MEDIUM
Heap-based Buffer Overflow (CWE-122)
2026-06-16 CERT-PL GHSA-fh45-7f3j-r575
4.8
CVSS 4.0 · Vendor: CERT-PL
Share

Severity by source

Vendor (CERT-PL) PRIMARY
4.8 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
3.3 LOW

Local vector with required user interaction to trigger the JNI path; impact is solely availability loss (crash); no privileges beyond local access needed.

3.1 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
4.0 AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Primary rating from Vendor (CERT-PL).

CVSS VectorVendor: CERT-PL

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
P
Scope
X

Lifecycle Timeline

1
Analysis Generated
Jun 16, 2026 - 11:51 vuln.today

DescriptionCVE.org

A heap buffer overflow vulnerability exists in the Jansi JNI "ioctl()" wrapper due to a lack of size verification for the argument array before the system call. This can lead to heap corruption and application crashes (DoS). All versions are believed to be vulnerable. This project is unmaintained at the time of CVE assignment.

AnalysisAI

Heap corruption in fusesource Jansi's JNI native layer exposes Java applications to denial-of-service through application crashes. The JNI wrapper around the ioctl() system call omits array-size bounds checking before passing the argument array into native heap memory, enabling a heap buffer overflow condition reachable by any local actor who can influence that code path. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain local access to target system
Delivery
Supply oversized ioctl argument array to Jansi-using application
Exploit
JNI ioctl() wrapper invoked without bounds check
Execution
Heap buffer overflow in native code
Impact
Heap corruption triggers application crash (DoS)

Vulnerability AssessmentAI

Exploitation The targeted application must have Jansi as a dependency and must exercise Jansi's JNI ioctl() wrapper code path - specifically the native wrapper that passes an argument array to the ioctl() syscall without size validation. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 score of 4.8 (Medium) is consistent with the limited impact profile: AV:L constrains exploitation to local access, UI:P requires some form of user interaction to trigger the vulnerable code path, and only VA:L (low availability on the vulnerable system) is claimed - no confidentiality or integrity impact exists. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A local user or process that can influence the argument data passed through an application's Jansi-using terminal output path crafts an oversized array and triggers the ioctl() JNI wrapper. The native code copies the oversized array into its heap buffer without bounds checking, corrupting adjacent heap memory and causing the host Java application to crash with a DoS outcome. …
Remediation No vendor-released patch has been identified at time of analysis, and none is anticipated given the project's confirmed unmaintained status. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-8484 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy