CVE-2018-2926

Name of the Vulnerable Software and Affected Versions Oracle Sun Systems Products Suite (subcomponent: NVIDIA-GFX Kernel driver) version 11.3

Description The issue is related to inadequate access control in the NVIDIA-GFX Kernel driver component of the Solaris operating system. It allows a low-privileged attacker with network access via ISCSI to compromise Solaris. Successful attacks can result in the ability to cause a hang or crash of Solaris, as well as unauthorized access to Solaris data, including update, insert, delete, and read access to some Solaris accessible data.

Recommendations For version 11.3, update to a version that includes the fix for this issue, as the current version is easily exploitable and can lead to significant system compromise. At the moment, there is no information about a newer version that contains a fix for this vulnerability.