Solaris
CVEs (725)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2010-3513 | 0.00 | — | 0.00 | Oct 14, 2010 | Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers. | |||
| CVE-2010-3509 | 0.00 | — | 0.02 | Oct 14, 2010 | Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scheduler. | |||
| CVE-2010-3508 | 0.00 | — | 0.00 | Oct 14, 2010 | Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Zones. | |||
| CVE-2010-3507 | 0.00 | — | 0.00 | Oct 14, 2010 | Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Live Upgrade. | |||
| CVE-2010-2400 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to Kernel/Filesystem. | |||
| CVE-2010-2399 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability via unknown vectors related to Kernel/VM. | |||
| CVE-2010-2394 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to TCP/IP. | |||
| CVE-2010-2393 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability, related to RPC. | |||
| CVE-2010-2392 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect integrity and availability, related to ZFS. | |||
| CVE-2010-2386 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to GigaSwift Ethernet Driver. | |||
| CVE-2010-2376 | 0.00 | — | 0.00 | Jul 13, 2010 | Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console. | |||
| CVE-2010-0890 | 0.00 | — | 0.00 | Apr 13, 2010 | Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv_01 through snv_98 allows local users to affect availability via unknown vectors related to the Kernel. | |||
| CVE-2010-0889 | 0.00 | — | 0.00 | Apr 13, 2010 | Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite OpenSolaris snv_68 through snv_128 allows local users to affect confidentiality via unknown vectors related to the Kernel. | |||
| CVE-2010-0882 | 0.00 | — | 0.00 | Apr 13, 2010 | Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv_134 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Trusted Extensions. | |||
| CVE-2009-3519 | 0.00 | — | 0.00 | Oct 1, 2009 | Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages. | |||
| CVE-2009-2296 | 0.00 | — | 0.04 | Jul 2, 2009 | The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. | |||
| CVE-2009-2282 | 0.00 | — | 0.00 | Jul 1, 2009 | The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain… | |||
| CVE-2009-1933 | 0.00 | — | 0.00 | Jun 5, 2009 | Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors. | |||
| CVE-2007-0895 | 0.00 | — | 0.00 | Feb 13, 2007 | Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which… | |||
| CVE-2006-5075 | 0.00 | — | 0.03 | Sep 29, 2006 | The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 before 20060926 allows remote attackers to cause a denial of service (system crash) via unspecified vectors related to an SSL client. |
- CVE-2010-3513Oct 14, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect integrity and availability via unknown vectors related to Device Drivers.
- CVE-2010-3509Oct 14, 2010risk 0.00cvss —epss 0.02
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scheduler.
- CVE-2010-3508Oct 14, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Zones.
- CVE-2010-3507Oct 14, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Live Upgrade.
- CVE-2010-2400Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to Kernel/Filesystem.
- CVE-2010-2399Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability via unknown vectors related to Kernel/VM.
- CVE-2010-2394Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to TCP/IP.
- CVE-2010-2393Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability, related to RPC.
- CVE-2010-2392Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect integrity and availability, related to ZFS.
- CVE-2010-2386Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to GigaSwift Ethernet Driver.
- CVE-2010-2376Jul 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console.
- CVE-2010-0890Apr 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv_01 through snv_98 allows local users to affect availability via unknown vectors related to the Kernel.
- CVE-2010-0889Apr 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite OpenSolaris snv_68 through snv_128 allows local users to affect confidentiality via unknown vectors related to the Kernel.
- CVE-2010-0882Apr 13, 2010risk 0.00cvss —epss 0.00
Unspecified vulnerability in the Solaris component in Oracle Sun Product Suite 10 and OpenSolaris snv_134 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Trusted Extensions.
- CVE-2009-3519Oct 1, 2009risk 0.00cvss —epss 0.00
Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.
- CVE-2009-2296Jul 2, 2009risk 0.00cvss —epss 0.04
The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors.
- CVE-2009-2282Jul 1, 2009risk 0.00cvss —epss 0.00
The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain…
- CVE-2009-1933Jun 5, 2009risk 0.00cvss —epss 0.00
Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors.
- CVE-2007-0895Feb 13, 2007risk 0.00cvss —epss 0.00
Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which…
- CVE-2006-5075Sep 29, 2006risk 0.00cvss —epss 0.03
The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 before 20060926 allows remote attackers to cause a denial of service (system crash) via unspecified vectors related to an SSL client.
Page 36 of 37