Local Vulnerability in Solaris Cluster Component of Oracle Sun Systems Products Suite
CVE-2016-5508

3.3LOW

Key Information:

Vendor

Oracle
Status
Solaris Cluster
Vendor
CVE Published:
25 October 2016

What is CVE-2016-5508?

The vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite 4.3 allows local users to manipulate elements that can potentially compromise data confidentiality. This issue may be exploited through various mechanisms related to Cluster Geo, posing a risk for sensitive information managed within the system. It is crucial to address this vulnerability to maintain the integrity and security of your Oracle Sun environment.

References

http://www.securitytracker.com/id/1037048
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93731
vdb-entryx_refsource_BID

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.