CVE-2008-0938Sensitive Information Exposure in Solaris

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
4.7MEDIUMNVD
CNA1.5
EPSS
0.0%
top 86.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Solaris
Timeline
PublishedFeb 25
Latest updateMay 1

Description

Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC privileges to obtain sensitive kernel information via unspecified vectors, a different vulnerability than CVE-2007-4126.

CVSS vector

AV:L/AC:M/C:C/I:N/A:NExploitability: 3.4 | Impact: 6.9

Affected Packages1 packages

NVDsun/solaris10

🔴Vulnerability Details

2
GHSA
GHSA-8rjr-4c5q-xwf6: Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC pri2022-05-01
CVEList
CVE-2008-0938: Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC pri2008-02-25
CVE-2008-0938 — Sensitive Information Exposure | cvebase