CVE-2018-2923

Published: Jul 18, 2018Modified: Nov 21, 2024

2.3

Vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Exploitability: 0.8 / Impact: 1.4

Source: NVD

Description

Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: Core Services). The supported version that is affected is Prior to 8.7.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Sun ZFS Storage Appliance Kit (AK) executes to compromise Sun ZFS Storage Appliance Kit (AK). Successful attacks of this vulnerability can result in unauthorized read access to a subset of Sun ZFS Storage Appliance Kit (AK) accessible data. CVSS 3.0 Base Score 2.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).

Affected (1)

Products: Oracle: Sun Zfs Storage Appliance Kit

1 product

Sun Zfs Storage Appliance Kit

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Sun Zfs Storage Appliance Kit	Before 8.7.20

References (6)

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.securityfocus.com/bid/104843

Source: secalert_us@oracle.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1041303

Source: secalert_us@oracle.com

Third Party AdvisoryVDB Entry

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/104843

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1041303

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.