Oracle Solaris IPS Package Manager Unauthorized Read Access Vulnerability

Oracle Solaris IPS Package Manager Unauthorized Read Access Vulnerability

CVE-2019-2704 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite (subcomponent: IPS Package Manager). The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Solaris. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Solaris accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

Learn more about our Cis Benchmark Audit For Oracle Solaris.