Lucene search
K

132 matches found

NVD
NVD
added 2020/10/21 3:15 p.m.13 views

CVE-2020-14759

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...

3.3CVSS0.00337EPSS
Exploits0References1
Prion
Prion
added 2020/10/21 3:15 p.m.34 views

Code injection

Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...

10CVSS9.4AI score0.80291EPSS
Exploits13References6Affected Software1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.29 views

CVE-2020-14871

Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...

10CVSS9.7AI score0.80291EPSS
Exploits13References7
CVE
CVE
added 2020/10/21 2:4 p.m.63 views

CVE-2020-14818

CVE-2020-14818 targets Oracle Solaris 11, specifically the Utility component. The issue is a vulnerability in Solaris 11 allowing a low-privileged attacker who can reach the system over SSH on the network to compromise Oracle Solaris. Attacks require user interaction, and while the flaw exists in...

3CVSS3.3AI score0.00715EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/10/21 2:4 p.m.10 views

CVE-2020-14758

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...

5.6CVSS6.2AI score0.00379EPSS
Exploits0References1
CVE
CVE
added 2020/10/21 2:4 p.m.54 views

CVE-2020-14754

CVE-2020-14754 affects Oracle Solaris 11, specifically the Filesystem component. The vulnerability is described as an authorization issue that could allow a low-privileged, logged-on attacker to compromise Solaris, potentially causing the system to hang or crash (complete/ frequent DOS). The base...

5.5CVSS5.6AI score0.00331EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/21 2:4 p.m.59 views

CVE-2020-14758

CVE-2020-14758 affects Oracle Solaris (Kernel) on the 11.x line. The vulnerability is a local, low-privilege issue where an attacker with logon can exploit a kernel component flaw to gain unauthorized access to data or achieve partial denial of service; human interaction is required. CVSS 3.1 bas...

5.6CVSS5.5AI score0.00379EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/10/21 2:4 p.m.80 views

CVE-2020-14759

CVE-2020-14759 affects Oracle Solaris kernel (likely Solaris 11) with a vulnerability in the Kernel component. The available connected documents describe a low-privilege, logon-access vulnerability that requires user interaction to exploit and can lead to unauthorized updates, inserts, or deletio...

3.3CVSS3.3AI score0.00337EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/29 12:0 a.m.7 views

The vulnerability of the Data Masking component regarding data copying from working Oracle systems allows attackers to modify, add, or delete data, or gain unauthorized access to protected information.

The vulnerability of Data Masking in copying data from Oracle workstations exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to modify, add, or delete data, or gain unauthorized access to protected information...

7.5CVSS7.3AI score0.01103EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2020/07/15 6:15 p.m.21 views

Design/Logic Flaw

Vulnerability in the Oracle Solaris product of Oracle Systems component: Device Driver Utility. The supported version that is affected is 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle...

3.3CVSS5.1AI score0.00321EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/07/15 5:34 p.m.54 views

CVE-2020-14724

CVE-2020-14724 is a vulnerability in Oracle Solaris, specifically impacting the Device Driver Utility component. Multiple connected sources confirm affected product: Oracle Solaris (version 11). The vulnerability allows a low-privileged attacker who has logon access to the system to compromise Or...

7.3CVSS7.4AI score0.0046EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/07/15 5:34 p.m.57 views

CVE-2020-14545

CVE-2020-14545 is a vulnerability in Oracle Solaris (component: Device Driver Utility) affecting the 11.x family. The connected documents specify that the vulnerability allows a low-privilege, logon-based attacker, with required user interaction, to compromise Oracle Solaris and potentially perfo...

5CVSS5AI score0.00321EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/07/15 5:34 p.m.57 views

CVE-2020-14542

Based on connected records, CVE-2020-14542 affects Oracle Solaris (libsuri) on the 11.x line. It is described as an information-disclosure vulnerability allowing a local, low-privilege attacker with logon to read a subset of Solaris data. The Red Hat entry reinforces the same component/version im...

3.3CVSS3.5AI score0.00404EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/07/15 5:34 p.m.66 views

CVE-2020-14537

CVE-2020-14537 affects Oracle Solaris 11 Packaging Scripts. A local, high-privilege attacker with logon and, per the 2020 Jul CPU notes, user interaction can cause a hang or complete DOS. CVSSv3.1 base score 5.5 (A: HIGH, Availability). No exploitation details are provided beyond vendor advisorie...

5.5CVSS5.4AI score0.00351EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/04/16 12:0 a.m.2 views

Unspecified Vulnerability in Oracle Systems Solaris (CNVD-2020-24432)

Oracle Systems Solaris is an Oracle MySQL server product from Oracle Corporation. A security vulnerability exists in Oracle Systems Solaris, which can be exploited by attackers to compromise the availability, confidentiality, and integrity of data by taking control of Solaris...

7.8CVSS8.1AI score0.00361EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.45 views

Oracle Solaris Critical Patch Update : apr2020_SRU11_4_19_3_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Sun ZFS Storage Appliance Kit product of Oracle Systems component: Operating System Image. The supported version that is affected is 8.8. Difficult to exploit vulnerability allows low...

7CVSS5.5AI score0.00546EPSS
Exploits0References5
NVD
NVD
added 2020/04/15 2:15 p.m.16 views

CVE-2020-2851

Vulnerability in the Oracle Solaris product of Oracle Systems component: Common Desktop Environment. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise...

7.8CVSS7.7AI score0.0056EPSS
Exploits3References4
CVE
CVE
added 2020/04/15 1:29 p.m.193 views

CVE-2020-2944

CVE-2020-2944 is a local privilege-escalation vulnerability in Oracle Solaris, affecting the Common Desktop Environment (CDE) component. A buffer overflow in sdtcm_convert allows a low-privileged user with logon to Solaris to gain root privileges when handling a malicious calendar file; the issue...

8.8CVSS8.5AI score0.01802EPSS
Exploits5References4Affected Software1
CVE
CVE
added 2020/04/15 1:29 p.m.61 views

CVE-2020-2927

CVE-2020-2927 affects Oracle Solaris (Common Desktop Environment) on Solaris 10 and 11. It is a local-privilege vulnerability in the CDE component that can lead to takeover of Oracle Solaris; CVSS 3.0 base score 7.8 (HIGH). Oracle’s APR2020 CPU/SRU11 3.36.20.0 patch bundle includes this CVE, indi...

7.8CVSS7.9AI score0.00361EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/04/15 1:29 p.m.98 views

CVE-2020-2851

CVE-2020-2851 affects Oracle Solaris (Common Desktop Environment: libDtSvc) on Solaris 10 and 11. A stack-based buffer overflow in libDtSvc may allow a low-privilege local user to gain control of the system, potentially leading to takeover of Solaris and impact to other products. The vulnerabilit...

7.8CVSS7.6AI score0.0056EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder