VULHUB ™

ChaiVM is the Chai Virtual Machine. The ChaiServer is a component of the ChaiVM infrastructure. It is distributed and maintained by Hewlett-Packard. The EZLoader does not sufficiently validate JAR signatures of services prior to loading them. Because of this, a user with access to the local system may be able to load unauthorized services of questionable origin via the ChaiServer. This could allow a user to remove a legitimate service from the ChaiServer, and replace it with a malicious version of the original service.

ChaiVM is the Chai Virtual Machine. The ChaiServer is a component of the ChaiVM infrastructure. It is distributed and maintained by Hewlett-Packard. The EZLoader does not sufficiently validate JAR signatures of services prior to loading them. Because of this, a user with access to the local system may be able to load unauthorized services of questionable origin via the ChaiServer. This could allow a user to remove a legitimate service from the ChaiServer, and replace it with a malicious version of the original service.