CVE-2023-21985 in Solaris情報

要約

〜によって MITRE • 2023年04月18日

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Solaris, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle Solaris. CVSS 3.1 Base Score 7.7 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

責任者

Oracle

予約する

2022年12月17日

モデレーション

承諾済み

エントリ

VDB-226724

CWE

不明

EPSS

0.00228

アクティビティ

非常低い

ソース

Do you want to use VulDB in your project?

Use the official API to access entries easily!