Vulnerability in the Oracle Solaris product of Oracle Systems (component: Zones). The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle Solaris. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuapr2024.html |
History
Wed, 27 Nov 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oracle solaris
|
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:* | |
Vendors & Products |
Oracle solaris
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2024-04-16T21:25:57.507Z
Updated: 2024-08-27T17:34:02.063Z
Reserved: 2023-12-07T22:28:10.644Z
Link: CVE-2024-20999
Vulnrichment
Updated: 2024-08-01T22:13:42.183Z
NVD
Status : Analyzed
Published: 2024-04-16T22:15:13.350
Modified: 2024-11-27T16:36:14.473
Link: CVE-2024-20999
Redhat
No data.