BID:104783

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

CVE-2018-2916 | CVE-2018-2917 | CVE-2018-2918 | CVE-2018-2921 | CVE-2018-2924 | CVE-2018-2927 | CVE-2018-3057 |

Info

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

Bugtraq ID:	104783
Class:	Unknown
CVE:	CVE-2018-3057 CVE-2018-2918 CVE-2018-2921 CVE-2018-2924 CVE-2018-2917 CVE-2018-2927 CVE-2018-2916
Remote:	No
Local:	Yes
Published:	Jul 17 2018 12:00AM
Updated:	Jul 17 2018 12:00AM
Credit:	Oracle
Vulnerable:	Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.17 Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.13

Not Vulnerable:	Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.20

Discussion

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

Oracle Sun ZFS Storage Appliance Kit (AK) is prone to multiple local security vulnerabilities.

Versions prior to Sun ZFS Storage Appliance Kit (AK) 8.7.18 are vulnerable.

Exploit / POC

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

Oracle Sun ZFS Storage Appliance Kit (AK) Multiple Local Security Vulnerabilities

References:

Oracle Homepage (Oracle)
Oracle Critical Patch Update Advisory - July 2018 (Oracle)