CVE-2024-21105

Name of the Vulnerable Software and Affected Versions: Oracle Solaris version 11

Description: The issue is related to insufficient protection of sensitive data in the Utility component of Oracle Solaris. Exploitation of this issue can allow an attacker to gain unauthorized access to protected information. The vulnerability is easily exploitable and requires human interaction from someone other than the attacker. Successful attacks can result in unauthorized read access to a subset of Oracle Solaris accessible data.

Recommendations: For Oracle Solaris version 11, update to a version that includes the fix for this issue to prevent unauthorized access to sensitive data. As a temporary workaround, consider restricting access to sensitive data and implementing additional security measures to minimize the risk of exploitation.