Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-2384 — Oracle Solaris vulnerability

4 documents4 sources

Severity

3.2LOWNVD

EPSS

0.2%

top 59.61%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Oracle Solaris

Timeline

PublishedJul 13

Latest updateMay 17

Description

Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console.

CVSS vector

AV:L/AC:L/C:P/I:P/A:NExploitability: 3.1 | Impact: 4.9

Affected Packages1 packages

▶NVDoracle/solaris10, 9+1

🔴Vulnerability Details

GHSA

GHSA-m566-p83q-86p2: Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris↗2022-05-17

▶

💥Exploits & PoCs

Exploit-DB

Oracle Solaris Management Console - WBEM Insecure Temporary File Creation↗2010-07-13

▶

💬Community

Bugzilla

CVE-2008-2384 mod_auth_mysql: character encoding SQL injection flaw↗2009-01-15

▶