CVE-2023-21928
First published: Tue Apr 18 2023(Updated: )
Vulnerability in the Oracle Solaris product of Oracle Systems (component: IPS repository daemon). The supported version that is affected is 11. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Solaris accessible data. CVSS 3.1 Base Score 1.8 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N).
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris | =11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2023-21928.
What is the affected software?
The affected software is Oracle Solaris version 11.
What is the severity of CVE-2023-21928?
The severity of CVE-2023-21928 is low with a CVSS score of 1.8.
How can the vulnerability be exploited?
The vulnerability allows a high privileged attacker with logon access to the Oracle Solaris infrastructure to compromise the system.
Where can I find more information?
You can find more information about CVE-2023-21928 in the Oracle Security Alerts page: https://www.oracle.com/security-alerts/cpuapr2023.html
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/event
- agent/type
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/oracle
- canonical/oracle solaris
- version/oracle solaris/11