CVE-2018-3274Corporation Solaris Operating System vulnerability

3 documents3 sources
Severity
5.7MEDIUMNVD
EPSS
0.4%
top 40.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Solaris Operating SystemOracle Solaris
Timeline
PublishedOct 17
Latest updateMay 13

Description

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11.3. Easily exploitable vulnerability allows low privileged attacker with network access via SMB to compromise Solaris. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Solaris. CVS

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:HExploitability: 2.1 | Impact: 3.6

Affected Packages2 packages

NVDoracle/solaris11.3

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-f2fh-3v8x-pp92: Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel)2022-05-13
CVEList
CVE-2018-3274: Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel)2018-10-17
CVE-2018-3274 — MEDIUM severity | cvebase