Local Integrity Vulnerability in Oracle Solaris Cluster Component
CVE-2016-5525

3.3LOW

Key Information:

Vendor
Oracle
Status
Solaris Cluster
Vendor
CVE Published:
25 October 2016

Summary

An unspecified vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite versions 3.3 and 4.3 allows local users to potentially compromise the integrity of the system. This stems from issues related to cluster check files, which could be exploited to alter key settings or operations within the clustering environment, affecting overall system performance and stability.

References

http://www.securitytracker.com/id/1037048
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93753
vdb-entryx_refsource_BID

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.