Vulnerability in Oracle Integrated Lights Out Manager Affecting Oracle Sun Systems Products Suite
CVE-2017-10194

2.7LOW

Key Information:

Vendor: Oracle
Status: Ssm - (hot-tamale) Ilom: Integrated Lights Out Manager
Vendor: CVE Published:; 19 October 2017

What is CVE-2017-10194?

The vulnerability in Oracle Integrated Lights Out Manager (ILOM) allows an attacker with high privileges and network access to compromise the management system. Exploiting this flaw could lead to unauthorized read access to sensitive data, posing serious risks for organizations using affected versions of Oracle Sun Systems Products Suite. It is crucial for users to update to the recommended versions to mitigate these security threats.

Affected Version(s)

SSM - (hot-tamale) ILOM: Integrated Lights Out Manager < 3.2.6

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/101445

vdb-entryx_refsource_BID

CVSS V3.1

Score:

2.7

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 19, 2017
Vulnerability Reserved
Jun 21, 2017

JSON