226 matches found
CVE-2024-21155
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: User Interface. The supported version that is affected is 8.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...
CVE-2024-21155
Oracle ZFS Storage Appliance Kit (Oracle) UI vulnerability (CVE-2024-21155) affects version 8.8. Root cause is insufficient input validation in the User Interface. An unauthenticated attacker with network access via HTTP can read data from the UI, with human interaction required for exploitation....
Vulnerabilities fixed in Oracle Systems
Oracle has fixed vulnerabilities in components of System Software. A malicious person with physical access to the hardware, or local access to the infrastructure, can exploit the vulnerabilities to exploit attacks that could result in the following categories of damage: Cross-Site Scripting XSS...
CVE-2024-21104
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
CVE-2024-21104
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
Oracle ZFS Storage Appliance 安全漏洞
Oracle ZFS Storage Appliance is a flash-enabled, petabyte-scale file storage with built-in Oracle database from Oracle Corporation USA. A security vulnerability exists in Oracle Systems' Oracle ZFS Storage Appliance Kit. An attacker could exploit the vulnerability to cause the Oracle ZFS Storage...
Design/Logic Flaw
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Object Store. The supported version that is affected is 8.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...
CVE-2023-21833
The CVE-2023-21833 entry affects Oracle ZFS Storage Appliance Kit (Object Store) version 8.8. The vulnerability allows a low-privilege, network-access attacker (HTTP) to read a subset of data. CVSS v3.1 base score 4.3 (Confidentiality impact: Low). Connected sources confirm the issue and indicate...
Vulnerabilities fixed in Oracle Systems
Oracle has fixed vulnerabilities in components of System Software. A malicious person with physical access to the hardware, or local access to the infrastructure, can exploit the vulnerabilities to exploit attacks that could result in the following categories of damage: Denial-of-Service DoS...
CVE-2024-20959
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
CVE-2024-20959
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
CVE-2024-20914
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
Design/Logic Flaw
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
Design/Logic Flaw
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Core. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to...
CVE-2024-20959
The CVE-2024-20959 entry concerns Oracle ZFS Storage Appliance Kit (Oracle Systems) with the Core component in version 8.8. The issue is caused by insufficient input validation, allowing a high-privileged attacker with local access to compromise the kit and potentially cause a hang or frequent cr...
CVE-2024-20914
The CVE-2024-20914 issue concerns Oracle ZFS Storage Appliance Kit 8.8. The vulnerability is linked to the Core component and stems from insufficient input validation, enabling a high-privilege attacker with local access to compromise the kit and gain unauthorized read access to a subset of data....
PT-2024-1335 · Oracle · Oracle Zfs Storage Appliance Kit
Name of the Vulnerable Software and Affected Versions: Oracle ZFS Storage Appliance Kit version 8.8 Description: The issue is related to insufficient input validation in the Core component of the Oracle ZFS Storage Appliance Kit. This easily exploitable vulnerability allows a low-privileged...
Oracle ZFS Storage Appliance Security Vulnerability
Oracle ZFS Storage Appliance is a flash-enabled, petabyte-scale file storage with built-in Oracle database from Oracle Corporation USA. A security vulnerability exists in Oracle Systems' Oracle ZFS Storage Appliance Kit version 8.8. An attacker could exploit the vulnerability to access sensitive...
PT-2024-1188 · Oracle · Oracle Zfs Storage Appliance Kit
Name of the Vulnerable Software and Affected Versions: Oracle ZFS Storage Appliance Kit version 8.8 Description: The issue is related to insufficient input validation in the Core component of the Oracle ZFS Storage Appliance Kit. This allows a high-privileged attacker with logon to the...
Design/Logic Flaw
Vulnerability in the Sun ZFS Storage Appliance product of Oracle Systems component: Core. The supported version that is affected is 8.8.60. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Sun ZFS Storage Appliance. Successful attacks o...