CVE-2023-22003
First published: Tue Apr 18 2023(Updated: )
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Solaris accessible data. CVSS 3.1 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N).
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris | =10 | |
| Oracle Solaris | =11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Oracle Solaris vulnerability?
The vulnerability ID for this Oracle Solaris vulnerability is CVE-2023-22003.
What versions of Oracle Solaris are affected by this vulnerability?
The versions of Oracle Solaris that are affected by this vulnerability are 10 and 11.
Is this vulnerability easily exploitable?
Yes, this vulnerability is easily exploitable.
What is the severity rating of this vulnerability?
The severity rating of this vulnerability is low with a severity value of 3.3.
How can an unauthenticated attacker exploit this vulnerability?
An unauthenticated attacker with logon to the infrastructure where Oracle Solaris executes can exploit this vulnerability to compromise Oracle Solaris.
- collector/nvd-index
- vendor/oracle
- canonical/oracle solaris
- version/oracle solaris/10
- version/oracle solaris/11