Vulnerability in Sun ZFS Storage Appliance Kit by Oracle
CVE-2018-3057
8.2HIGH
Key Information:
- Vendor
- Oracle
- Vendor
- CVE Published:
- 18 July 2018
Summary
A vulnerability has been identified in the Sun ZFS Storage Appliance Kit (AK) component of Oracle's Sun Systems Products Suite. This issue allows a privileged attacker with access to the infrastructure where the kit operates to potentially compromise the service. Although the vulnerability is specific to the Sun ZFS Storage Appliance Kit (AK), successful exploitation may have significant repercussions on additional associated products, leading to unauthorized takeover of the affected system. The supported versions impacted are those prior to 8.7.18, heightening the need for immediate attention and remediation.
Affected Version(s)
Sun ZFS Storage Appliance Kit (AK) Software < 8.7.18
References
CVSS V3.1
Score:
8.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved