Filesystem Vulnerability in Oracle Solaris by Oracle Systems
CVE-2022-39417

5.5MEDIUM

Key Information:

Vendor: Oracle
Status: Solaris Operating System
Vendor: CVE Published:; 18 October 2022

Summary

An exploitable vulnerability exists in the Filesystem component of Oracle Solaris, affecting supported version 11. This vulnerability allows a low privileged attacker who has access to the infrastructure where Oracle Solaris operates to potentially compromise the system. Successful exploitation may lead to the ability to hang the system or cause frequent crashes, resulting in a denial of service condition for users of Oracle Solaris.

Affected Version(s)

Solaris Operating System 11

References

https://www.oracle.com/security-alerts/cpuoct2022.html

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 18, 2022
Vulnerability Reserved
Sep 2, 2022