Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: RAS subsystems). The supported version that is affected is AK 2013. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Sun ZFS Storage Appliance Kit (AK) executes to compromise Sun ZFS Storage Appliance Kit (AK). While the vulnerability is in Sun ZFS Storage Appliance Kit (AK), attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Sun ZFS Storage Appliance Kit (AK). CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).
References
Link | Resource |
---|---|
http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html | Vendor Advisory |
http://www.securityfocus.com/bid/97810 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038292 |
Configurations
Information
Published : 2017-04-24 12:59
Updated : 2019-10-02 17:03
NVD link : CVE-2017-3578
Mitre link : CVE-2017-3578
JSON object : View
CWE
Products Affected
oracle
- sun_zfs_storage_appliance_kit_software