CVE-2024-21151

CVSS v3 3.3 LOW

3.3^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

ulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Solaris. CVSS 3.1 Base Score 3.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).

References

Link	Resource
https://www.oracle.com/security-alerts/cpujul2024.html	Vendor Advisory
https://www.oracle.com/security-alerts/cpujul2024.html	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*

History

05 Dec 2024, 21:41

Type	Values Removed	Values Added
CWE		NVD-CWE-noinfo
References	~~() https://www.oracle.com/security-alerts/cpujul2024.html -~~	() https://www.oracle.com/security-alerts/cpujul2024.html - Vendor Advisory
CPE		cpe:2.3:o:oracle:solaris:11:::::::*
First Time		Oracle solaris Oracle

21 Nov 2024, 08:53

Type	Values Removed	Values Added
References	~~() https://www.oracle.com/security-alerts/cpujul2024.html -~~	() https://www.oracle.com/security-alerts/cpujul2024.html -
Summary		(es) Vulnerabilidad en el producto Oracle Solaris de Oracle Systems (componente: Filesystem). La versión compatible que se ve afectada es la 11. Una vulnerabilidad fácilmente explotable permite a un atacante con pocos privilegios iniciar sesión en la infraestructura donde se ejecuta Oracle Solaris para comprometer Oracle Solaris. Los ataques exitosos de esta vulnerabilidad pueden resultar en una capacidad no autorizada para causar una denegación de servicio parcial (DOS parcial) de Oracle Solaris. CVSS 3.1 Puntuación base 3.3 (impactos en la disponibilidad). Vector CVSS: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).

16 Jul 2024, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-16 23:15

Updated : 2024-12-05 21:41

NVD link : CVE-2024-21151

Mitre link : CVE-2024-21151

CVE.ORG link : CVE-2024-21151

JSON object : View

Products Affected

oracle

solaris

CWE

NVD-CWE-noinfo

3.3 /10