CVE-2020-14871

critical
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle Solaris. Note: This CVE is not exploitable for Solaris 11.1 and later releases, and ZFSSA 8.7 and later releases, thus the CVSS Base Score is 0.0. CVSS 3.1 Base Score 10.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H).

References

https://www.oracle.com/security-alerts/cpuoct2020.html

http://packetstormsecurity.com/files/159961/SunSSH-Solaris-10-x86-Remote-Root.html

http://packetstormsecurity.com/files/160510/Solaris-SunSSH-11.0-x86-libpam-Remote-Root.html

http://packetstormsecurity.com/files/160609/Oracle-Solaris-SunSSH-PAM-parse_user_name-Buffer-Overflow.html

http://www.openwall.com/lists/oss-security/2021/03/03/1

http://packetstormsecurity.com/files/163232/Solaris-SunSSH-11.0-Remote-Root.html

Details

Source: MITRE

Published: 2020-10-21

Updated: 2021-06-22

Type: CWE-787

Risk Information

CVSS v2

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 10

Severity: HIGH

CVSS v3

Base Score: 10

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Impact Score: 6

Exploitability Score: 3.9

Severity: CRITICAL

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:oracle:solaris:*:*:*:*:*:*:*:*

Tenable Plugins

View all (5 total)

IDNameProductFamilySeverity
142712Oracle Solaris PAM parse_user_name() buffer overflow (CVE-2020-14871)NessusMisc.
critical
141773Oracle Solaris Critical Patch Update : oct2020_SRU11_4_24_75_2NessusSolaris Local Security Checks
critical
141772Oracle Solaris Critical Patch Update : oct2020_SRU11_3_36_23_0NessusSolaris Local Security Checks
critical
141557Solaris 10 (sparc) : 153074-01NessusSolaris Local Security Checks
critical
141553Solaris 10 (x86) : 153075-01NessusSolaris Local Security Checks
critical