Low severity3.3NVD Advisory· Published Apr 24, 2017· Updated May 13, 2026

CVE-2017-3498

Description

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Solaris accessible data. CVSS 3.0 Base Score 3.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

Affected products

Oracle Corporation/Solaris2 versions
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
- (no CPE)range: =11.3
Oracle Corporation/Solaris Operating Systemv5
Range: 11.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/97827nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038292nvd

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000