Oracle Solaris vulnerabilities
549 known vulnerabilities affecting oracle/solaris.
Total CVEs
549
CISA KEV
6
actively exploited
Public exploits
29
Exploited in wild
8
Severity breakdown
CRITICAL45HIGH116MEDIUM285LOW103
Vulnerabilities
Page 26 of 28
CVE-2013-3812LOWCVSS 3.5v11.32013-07-17
CVE-2013-3812 [LOW] CVE-2013-3812: Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.1
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Replication.
nvd
CVE-2013-2376MEDIUMCVSS 4.0v11.32013-04-17
CVE-2013-2376 [MEDIUM] CVE-2013-2376: Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.10 and earlier allows remote au
Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to Stored Procedure.
nvd
CVE-2013-1502LOWCVSS 1.5v11.32013-04-17
CVE-2013-1502 [LOW] CVE-2013-1502: Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.9 and earlier allows local user
Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.9 and earlier allows local users to affect availability via unknown vectors related to Server Partition.
nvd
CVE-2013-1511LOWCVSS 3.5v11.32013-04-17
CVE-2013-1511 [LOW] CVE-2013-1511: Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.10 and earlier allows remote au
Unspecified vulnerability in Oracle MySQL 5.5.30 and earlier and 5.6.10 and earlier allows remote authenticated users to affect availability via unknown vectors related to InnoDB.
nvd
CVE-2011-3201MEDIUMCVSS 4.3v11.22013-03-08
CVE-2011-3201 [MEDIUM] CWE-200 CVE-2011-3201: GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the a
GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter to a mailto: URL, which attaches the file to the email.
nvd
CVE-2012-0876MEDIUMCVSS 4.3v11.32012-07-03
CVE-2012-0876 [MEDIUM] CWE-400 CVE-2012-0876: The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the abili
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file with many identifiers with the same value.
nvd
CVE-2011-3537HIGHCVSS 7.8v8v9+2 more2011-10-18
CVE-2011-3537 [HIGH] CVE-2011-3537: Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect av
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel/Filesystem.
nvd
CVE-2011-2304MEDIUMCVSS 4.3v102011-10-18
CVE-2011-2304 [MEDIUM] CVE-2011-2304: Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality, re
Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality, related to Network Services Library (libnsl).
nvd
CVE-2011-3534MEDIUMCVSS 5.0v8v9+2 more2011-10-18
CVE-2011-3534 [MEDIUM] CVE-2011-3534: Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affe
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to Network Status Monitor (statd).
nvd
CVE-2011-2313MEDIUMCVSS 4.3v10.02011-10-18
CVE-2011-2313 [MEDIUM] CVE-2011-2313: Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to ZFS, a different vulnerability than CVE-2011-2311.
nvd
CVE-2011-2312LOWCVSS 1.7v102011-10-18
CVE-2011-2312 [LOW] CVE-2011-2312: Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, related
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, related to ZFS.
nvd
CVE-2011-2292LOWCVSS 2.4v9v11_express2011-10-18
CVE-2011-2292 [LOW] CVE-2011-2292: Unspecified vulnerability in Oracle Solaris 9 and 11 Express allows local users to affect confidenti
Unspecified vulnerability in Oracle Solaris 9 and 11 Express allows local users to affect confidentiality and integrity via unknown vectors related to xscreensaver.
nvd
CVE-2011-2311LOWCVSS 1.7v102011-10-18
CVE-2011-2311 [LOW] CVE-2011-2311: Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to ZFS, a different vulnerability than CVE-2011-2313.
nvd
CVE-2011-3539LOWCVSS 1.7v10v11_express2011-10-18
CVE-2011-3539 [LOW] CVE-2011-3539: Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availabil
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to Zones.
nvd
CVE-2011-2286LOWCVSS 2.1v10v11_express2011-10-18
CVE-2011-2286 [LOW] CVE-2011-2286: Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote authenticated users to a
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote authenticated users to affect availability, related to ZFS.
nvd
CVE-2011-3536LOWCVSS 2.1v102011-10-18
CVE-2011-3536 [LOW] CVE-2011-3536: Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to DTrace Software Library (libdtrace).
nvd
CVE-2011-0419MEDIUMCVSS 4.3PoCv102011-05-16
CVE-2011-0419 [MEDIUM] CWE-770 CVE-2011-0419: Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portabl
Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library before 1.4.3 and the Apache HTTP Server before 2.2.18, and in fnmatch.c in libc in NetBSD 5.1, OpenBSD 4.8, FreeBSD, Apple Mac OS X 10.6, Oracle Solaris 10, and Android, allows context-dependent attackers to cause a denial of ser
nvd
CVE-2010-3509CRITICALCVSS 10.0v8v9+1 more2010-10-14
CVE-2010-3509 [CRITICAL] CVE-2010-3509: Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confident
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scheduler.
nvd
CVE-2010-3516MEDIUMCVSS 4.0v102010-10-14
CVE-2010-3516 [MEDIUM] CVE-2010-3516: Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availabi
Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability via unknown vectors related to InfiniBand.
nvd
CVE-2010-3503MEDIUMCVSS 6.3PoCv102010-10-14
CVE-2010-3503 [MEDIUM] CVE-2010-3503: Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect confiden
Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect confidentiality and integrity via unknown vectors related to su.
nvd