Oracle Solaris Cluster 4.0

CPE Details

Oracle Solaris Cluster 4.0
oracle
solaris_cluster
4.0
2016-02-17
16h55 +00:00
2016-02-17
16h55 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:oracle:solaris_cluster:4.0:*:*:*:*:*:*:*

Informations

Vendor

oracle

Product

solaris_cluster

Version

4.0

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2020-6950 2021-06-02 13h49 +00:00 Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter.
6.5
Moyen
CVE-2021-29425 2021-04-13 04h50 +00:00 In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "\\..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path traversal), if the calling code would use the result to construct a path value.
4.8
Moyen
CVE-2019-17195 2019-10-15 11h42 +00:00 Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) or a potential authentication bypass.
9.8
Critique
CVE-2017-10234 2017-08-08 13h00 +00:00 Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: NAS device addition). The supported version that is affected is 4. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris Cluster executes to compromise Solaris Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Solaris Cluster. CVSS 3.0 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H).
7.3
Haute