Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). The supported version that is affected is 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle Solaris. CVSS 3.1 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuapr2024.html |
History
Fri, 06 Dec 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oracle solaris
|
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:* | |
Vendors & Products |
Oracle solaris
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2024-04-16T21:26:18.102Z
Updated: 2024-08-01T22:13:42.311Z
Reserved: 2023-12-07T22:28:10.662Z
Link: CVE-2024-21059
Vulnrichment
Updated: 2024-08-01T22:13:42.311Z
NVD
Status : Analyzed
Published: 2024-04-16T22:15:23.740
Modified: 2024-12-06T16:35:57.460
Link: CVE-2024-21059
Redhat
No data.