Oracle Sun ZFS Storage Appliance Kit (AK) CVE-2018-2905 Remote Security Vulnerability

Bugtraq ID:	104842
Class:	Unknown
CVE:	CVE-2018-2905
Remote:	Yes
Local:	No
Published:	Jul 17 2018 12:00AM
Updated:	Jul 17 2018 12:00AM
Credit:	Oracle
Vulnerable:	Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.19 Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.18 Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.17 Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.13
Not Vulnerable:	Oracle Sun ZFS Storage Appliance Kit (AK) 8.7.20

Oracle Sun ZFS Storage Appliance Kit (AK) CVE-2018-2905 Remote Security Vulnerability

Oracle Sun ZFS Storage Appliance Kit (AK) is prone to a remote security vulnerability.

This vulnerability affects the 'Core Services' component and can be exploited over the 'SSL/TLS' protocol.

This vulnerability affects the following supported versions:
Prior to 8.7.20

Oracle Sun ZFS Storage Appliance Kit (AK) CVE-2018-2905 Remote Security Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Oracle Sun ZFS Storage Appliance Kit (AK) CVE-2018-2905 Remote Security Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.