132 matches found
Spoofing
Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks...
CVE-2023-21900
CVE-2023-21900 affects the Oracle Solaris NSSwitch component on Solaris 10 and 11. The vulnerability allows a high-privilege attacker with network access via multiple protocols to compromise Solaris, with attacks requiring human interaction. Impacts include unauthorized updates/deletes to Solaris...
CVE-2022-39417
CVE-2022-39417 affects Oracle Solaris 11, specifically the Filesystem component. The vulnerability can be exploited by a low-privilege user with logon to the host, potentially causing the system to hang or enter a frequently repeatable crash (complete DoS). CVSS v3.1 base score is 5.5 (Availabili...
CVE-2022-21439
Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...
Code injection
Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...
CVE-2022-21563
CVE-2022-21563 affects Oracle ZFS Storage Appliance Kit (Core) in Oracle Systems, with affected version 8.8. The vulnerability allows a high-privilege attacker with local logon to potentially read or modify Oracle ZFS Storage Appliance Kit data and cause a partial denial of service. The CVSS 3.1 ...
CVE-2022-21533
CVE-2022-21533 affects Oracle Solaris 11 SMB Server. The vulnerability in the SMB Server component allows a low-privilege, local attacker to cause a hang or repeatable crash (complete DoS). This matches Oracle’s July-2022 CPU advisory context for Solaris; patches addressing this vulnerability wer...
CVE-2022-21514
CVE-2022-21514 affects Oracle Solaris 11, specifically the Remote Administration Daemon. The vulnerability enables a network-based attacker with no privileges to cause a hang or crash (DoS). CVSS v3.1 base score 7.5 (Availability impact). Oracle’s JUL 2022 CPU SRU11_4_46_119_2 and related patches...
CVE-2022-21513
CVE-2022-21513 affects Oracle ZFS Storage Appliance Kit, Core component, in the 8.8 release. The vulnerability is described as a high-severity issue with a CVSS v3.1 base score of 8.2, enabling a high-privilege attacker who can log on to the infrastructure where the kit runs to compromise the pro...
CVE-2022-21513
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
Oracle Solaris Input Validation Error Vulnerability (CNVD-2022-36947)
Oracle Solaris is a UNIX operating system from Oracle. A security vulnerability exists in Oracle Systems' Oracle Solaris product that could allow a low-privileged attacker to compromise Oracle Solaris by logging on to the infrastructure that executes Oracle Solaris.The vulnerability could be...
Oracle Solaris has an unspecified vulnerability (CNVD-2022-31849)
Oracle Solaris is a UNIX operating system from Oracle Systems, Inc. A security vulnerability in Oracle Solaris allows a highly privileged attacker to compromise Oracle Solaris by logging into the infrastructure where Oracle Solaris is executed. A successful attack requires human interaction from...
Oracle Solaris Critical Patch Update : apr2022_SRU11_4_42_113_1
This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Utility. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to t...
Oracle Enterprise Manager Ops Center (Apr 2022 CPU)
The 12.4.0.0 versions of Enterprise Manager Ops Center installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2022 CPU advisory. - Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Web Server Apache HTTP Server...
CVE-2022-21493
Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...
CVE-2022-21446
Vulnerability in the Oracle Solaris product of Oracle Systems component: Utility. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks of this...
CVE-2022-21416
Vulnerability in the Oracle Solaris product of Oracle Systems component: Utility. The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...
Design/Logic Flaw
Vulnerability in the Oracle Solaris product of Oracle Systems component: Utility. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris. Successful attacks of this...
CVE-2022-21494
Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful...
CVE-2022-21494
CVE-2022-21494 is a vulnerability in Oracle Solaris (kernel) affecting Solaris 11. An attacker with local access and user interaction can cause a hang or DoS on the system. Public details confirm the issue is kernel-level with the reported impact and that Oracle released patches in the April 2022...