CVE-2018-3271

Name of the Vulnerable Software and Affected Versions Oracle Solaris version 11.3

Description The issue is related to a lack of access control in the Kernel Zones component of Oracle Solaris, which can be exploited by a high-privileged attacker with logon access to the infrastructure where Solaris is executed. This can lead to a denial of service (DOS) due to the ability to cause a hang or frequently repeatable crash of Solaris. The impact of a successful attack may also extend to additional products.

Recommendations For Oracle Solaris version 11.3, consider restricting access to the Kernel Zones component to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.