CVE-2026-21930

low

Description

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Filesystems). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit executes to compromise Oracle ZFS Storage Appliance Kit. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle ZFS Storage Appliance Kit accessible data. CVSS 3.1 Base Score 2.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).

References

https://www.oracle.com/security-alerts/cpujan2026.html

Details

Source: Mitre, NVD

Published: 2026-01-20

Updated: 2026-01-20

Risk Information

CVSS v2

Base Score: 1.4

Vector: CVSS2#AV:L/AC:L/Au:M/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 2.3

Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Severity: Low

EPSS

EPSS: 0.00011

Detections

Analytics