Detections
Analytics

Oracle Solaris Critical Patch Update : oct2023_SRU11_4_62_151_3

low Nessus Plugin ID 183515

Language:

Synopsis

The remote Solaris system is missing a security patch from CPU Oct2023.

Description

The remote host is affected by a difficult to exploit vulnerability which allows an unauthenticated attacker with network access via rquota to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker and can result in unauthoraized read access to a subset of accessible data.

Solution

Install the Oct2023 CPU from the Oracle support website.

See Also

https://www.oracle.com/docs/tech/security-alerts/cpuoct2023cvrf.xml

https://www.oracle.com/security-alerts/cpuoct2023.html

Plugin Details

Severity: Low

ID: 183515

File Name: solaris_oct2023_SRU11_4_62_151_3.nasl

Version: 1.0

Type: local

Published: 10/20/2023

Updated: 10/20/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Low

Base Score: 2.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2023-22128

CVSS v3

Risk Factor: Low

Base Score: 3.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

Vulnerability Information

CPE: cpe:/o:oracle:solaris

Required KB Items: Host/local_checks_enabled, Host/Solaris11/release

Exploit Ease: No known exploits are available

Patch Publication Date: 10/17/2023

Vulnerability Publication Date: 10/17/2023

Reference Information

CVE: CVE-2023-22128