Oracle · Oracle Solaris · CVE-2021-2167
**Name of the Vulnerable Software and Affected Versions**
Oracle Solaris version 10
**Description**
The issue is related to insufficient input validation in the Common Desktop Environment component of Oracle Solaris. This easily exploitable flaw allows a low-privileged attacker with logon access to the infrastructure where Oracle Solaris is executed to compromise Oracle Solaris, potentially resulting in a takeover. The vulnerability can impact the confidentiality, integrity, and availability of protected information.
**Recommendations**
For Oracle Solaris version 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.