CVE-2021-2167

Name of the Vulnerable Software and Affected Versions Oracle Solaris version 10

Description The issue is related to insufficient input validation in the Common Desktop Environment component of Oracle Solaris. This easily exploitable flaw allows a low-privileged attacker with logon access to the infrastructure where Oracle Solaris is executed to compromise Oracle Solaris, potentially resulting in a takeover. The vulnerability can impact the confidentiality, integrity, and availability of protected information.

Recommendations For Oracle Solaris version 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.