PT-2017-16011 · Oracle · Sun Zfs Storage Appliance Kit

Published

2017-04-24

Updated

2019-10-03

CVE-2017-3580

CVSS v3.1

8.3

High

Vector

AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Oracle Sun Systems Products Suite version AK 2013

Description The issue affects the RAS subsystems component of the Sun ZFS Storage Appliance Kit (AK), allowing an unauthenticated attacker with network access via multiple protocols to compromise the system. The attack requires human interaction from a person other than the attacker and can significantly impact additional products. Successful exploitation can result in the takeover of the Sun ZFS Storage Appliance Kit (AK).

Recommendations For version AK 2013, update to a version that addresses this issue, as the current version is affected and can be exploited.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-3580

Affected Products

Sun Zfs Storage Appliance Kit

PT-2017-16011 · Oracle · Sun Zfs Storage Appliance Kit

CVE-2017-3580

Related Identifiers

Affected Products

References · 5