CVE-2018-2822

Name of the Vulnerable Software and Affected Versions Oracle Sun Systems Products Suite version 4.3

Description The issue allows a low-privileged attacker with logon to the infrastructure where Solaris Cluster executes to compromise Solaris Cluster. Successful attacks can result in unauthorized access to critical data or complete access to all Solaris Cluster accessible data, as well as unauthorized update, insert, or delete access to some of Solaris Cluster accessible data. Additionally, it can cause a partial denial of service of Solaris Cluster.

Recommendations For version 4.3, update to a version that includes the fix for this issue to prevent unauthorized access and potential data breaches. As a temporary workaround, consider restricting access to the Solaris Cluster component to minimize the risk of exploitation.