CVE-2020-14758

Name of the Vulnerable Software and Affected Versions: Oracle Solaris version 11

Description: The issue is related to insufficient access control in the Kernel component of Oracle Solaris, which can be exploited to gain unauthorized access to sensitive information or cause a denial of service. The vulnerability can be easily exploited by a low-privileged attacker with logon access to the infrastructure where Oracle Solaris is executed, but it requires human interaction from a person other than the attacker. Successful attacks can result in unauthorized access to critical data or complete access to all Oracle Solaris accessible data, as well as the ability to cause a partial denial of service.

Recommendations: For Oracle Solaris version 11, apply the necessary patches or updates to fix the vulnerability in the Kernel component. As a temporary workaround, consider restricting access to sensitive information and implementing additional security measures to minimize the risk of exploitation.