PT-2021-20967 · Oracle · Oracle Solaris

Published

2021-10-20

Updated

2021-10-26

CVE-2021-35549

CVSS v3.1

3.9

Low

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions: Oracle Solaris version 11

Description: The issue allows a low-privileged attacker with logon access to the infrastructure to compromise Oracle Solaris. It requires human interaction from a person other than the attacker. Successful attacks can result in unauthorized access to some of Oracle Solaris' data, including update, insert, or delete access, as well as a partial denial of service (DOS) of Oracle Solaris.

Recommendations: For Oracle Solaris version 11, update to a version that includes a fix for this issue, as no specific workaround is provided.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-35549

Affected Products

Oracle Solaris

PT-2021-20967 · Oracle · Oracle Solaris

CVE-2021-35549

Related Identifiers

Affected Products

References · 3