Every CVE whose affected-product data names Sun Opensolaris, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (113)
CVE-2009-2296 — CVSS 10.0 (critical): The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting…
CVE-2008-5010 — CVSS 10.0 (critical): in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows remote attackers to cause a denial…
CVE-2015-6319 — CVSS 9.8 (critical): SQL injection vulnerability in the web-based management interface on Cisco RV220W devices allows remote attackers to execute arbitrary SQL…
CVE-2016-1329 — CVSS 9.8 (critical): Cisco NX-OS 6.0(2)U6(1) through 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) through 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices…
CVE-2016-1291 — CVSS 9.8 (critical): Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers to execute…
CVE-2008-0964 — CVSS 9.3 (critical): Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted…
CVE-2008-0965 — CVSS 9.3 (critical): Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted…
CVE-2016-1302 — CVSS 8.8 (high): Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1.1 before 1.1(1j) and Nexus 9000 ACI…
CVE-2008-7300 — CVSS 8.5 (high): The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled…
CVE-2016-1290 — CVSS 8.1 (high): The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote…
CVE-2009-2487 — CVSS 7.8 (high): Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45…
CVE-2009-0923 — CVSS 7.8 (high): Unspecified vulnerability in Kerberos Incremental Propagation in Solaris 10 and OpenSolaris snv_01 through snv_110 allows remote attackers…
CVE-2009-4190 — CVSS 7.8 (high): Unspecified vulnerability in the kernel in Sun OpenSolaris 2009.06 allows remote attackers to cause a denial of service (panic) via unknown…
CVE-2009-0277 — CVSS 7.8 (high): Unspecified vulnerability in the kernel in OpenSolaris snv_100 through snv_102 on the Sun UltraSPARC T2 and T2+ sun4v platforms allows…
CVE-2009-0304 — CVSS 7.8 (high): The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system…
CVE-2009-2486 — CVSS 7.8 (high): Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a…
CVE-2009-2136 — CVSS 7.8 (high): Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through…
CVE-2009-3899 — CVSS 7.8 (high): Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers…
CVE-2009-2137 — CVSS 7.8 (high): Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112…
CVE-2016-1350 — CVSS 7.5 (high): Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial…
CVE-2016-1349 — CVSS 7.5 (high): The Smart Install client implementation in Cisco IOS 12.2, 15.0, and 15.2 and IOS XE 3.2 through 3.7 allows remote attackers to cause a…
CVE-2016-1348 — CVSS 7.5 (high): Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a crafted…
CVE-2010-0558 — CVSS 7.5 (high): The default configuration of Oracle OpenSolaris snv_77 through snv_131 allows attackers to have an unspecified impact via vectors related…
CVE-2015-0718 — CVSS 7.5 (high): Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows…
CVE-2015-6313 — CVSS 7.5 (high): Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and…
CVE-2010-0559 — CVSS 7.5 (high): The default configuration of Oracle OpenSolaris snv_91 through snv_131 allows attackers to have an unspecified impact via vectors related…
CVE-2007-5365 — CVSS 7.2 (high): Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd…
CVE-2008-2710 — CVSS 7.2 (high): Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun…
CVE-2008-3838 — CVSS 7.2 (high): Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88…
CVE-2008-3875 — CVSS 7.2 (high): The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted…
CVE-2008-5689 — CVSS 7.2 (high): tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly…
CVE-2008-5908 — CVSS 7.2 (high): Unspecified vulnerability in the root/boot archive tool in Sun OpenSolaris has unknown impact and local attack vectors, related to a…
CVE-2008-5909 — CVSS 7.2 (high): Unspecified vulnerability in conv_lpd in Sun OpenSolaris has unknown impact and local attack vectors, related to improper handling of…
CVE-2008-5910 — CVSS 7.2 (high): Unspecified vulnerability in txzonemgr in Sun OpenSolaris has unknown impact and local attack vectors, related to a "Temporary file…
CVE-2009-4191 — CVSS 7.2 (high): Unspecified vulnerability in the kernel in Sun Solaris 10 and OpenSolaris 2009.06 on the x86-64 platform allows local users to gain…
CVE-2009-0477 — CVSS 7.2 (high): Unspecified vulnerability in the process (aka proc) filesystem in Sun OpenSolaris snv_85 through snv_100 allows local users to gain…
CVE-2009-3390 — CVSS 7.2 (high): Multiple unspecified vulnerabilities in the (1) iscsiadm and (2) iscsitadm programs in Sun Solaris 10, and OpenSolaris snv_28 through…
CVE-2009-3183 — CVSS 7.2 (high): Heap-based buffer overflow in w in Sun Solaris 8 through 10, and OpenSolaris before snv_124, allows local users to gain privileges via…
CVE-2009-1763 — CVSS 7.2 (high): Unspecified vulnerability in the Solaris Secure Digital slot driver (aka sdhost) in Sun OpenSolaris snv_105 through snv_108 on the x86…
CVE-2009-3000 — CVSS 7.1 (high): The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is…
CVE-2009-4226 — CVSS 7.1 (high): Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of…
CVE-2008-3666 — CVSS 7.1 (high): Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of…
CVE-2009-2297 — CVSS 7.1 (high): Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris…
CVE-2009-3164 — CVSS 7.1 (high): Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through…
CVE-2009-1170 — CVSS 6.9 (medium): Unspecified vulnerability in Sun OpenSolaris snv_100 through snv_101 allows local users, with privileges in a non-global zone, to execute…
CVE-2009-0319 — CVSS 6.9 (medium): Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local…
CVE-2009-0875 — CVSS 6.9 (medium): Race condition in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_94, allows local users to cause…
CVE-2009-3839 — CVSS 6.8 (medium): Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125…
CVE-2009-0872 — CVSS 6.8 (medium): The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in…
CVE-2009-0873 — CVSS 6.8 (medium): The NFS daemon (aka nfsd) in Sun Solaris 10 and OpenSolaris before snv_106, when NFSv3 is used, does not properly implement combinations of…
CVE-2009-2652 — CVSS 6.8 (medium): Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers…
CVE-2016-1310 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 11.5(0.199) allows remote attackers to inject arbitrary web script or…
CVE-2016-1306 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Cisco Fog Director 1.0(0) allow remote attackers to inject arbitrary web script or…
CVE-2016-1344 — CVSS 5.9 (medium): The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service…
CVE-2008-5133 — CVSS 5.8 (medium): ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT)…
CVE-2008-5661 — CVSS 5.4 (medium): The IPv4 Forwarding feature in Sun Solaris 10 and OpenSolaris snv_47 through snv_82, with certain patches installed, allows remote…
CVE-2008-6024 — CVSS 5.4 (medium): Unspecified vulnerability in the NFSv4 client module in the kernel on Sun Solaris 10 and OpenSolaris before snv_37, when automountd is…
CVE-2009-0267 — CVSS 5.0 (medium): libike in Sun Solaris 9 and 10, and OpenSolaris before snv_100, does not properly check packets, which allows remote attackers to cause a…
CVE-2009-2029 — CVSS 5.0 (medium): Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to…
CVE-2009-4075 — CVSS 5.0 (medium): Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote…
CVE-2008-5684 — CVSS 5.0 (medium): Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85…
CVE-2009-2644 — CVSS 4.9 (medium): Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are…
CVE-2009-0926 — CVSS 4.9 (medium): Unspecified vulnerability in the UFS filesystem functionality in Sun OpenSolaris snv_86 through snv_91, when running in 32-bit mode on x86…
CVE-2009-2711 — CVSS 4.9 (medium): XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used…
CVE-2009-2912 — CVSS 4.9 (medium): The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a…
CVE-2009-2952 — CVSS 4.9 (medium): Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial…
CVE-2008-2708 — CVSS 4.9 (medium): Unspecified vulnerability in the Sun (1) UltraSPARC T2 and (2) UltraSPARC T2+ kernel modules in Sun Solaris 10, and OpenSolaris before…
CVE-2009-2135 — CVSS 4.9 (medium): Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial…
CVE-2009-2187 — CVSS 4.9 (medium): Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through…
CVE-2009-1478 — CVSS 4.9 (medium): Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to…
CVE-2009-1359 — CVSS 4.9 (medium): Unspecified vulnerability in the SCTP sockets implementation in Sun OpenSolaris snv_106 through snv_107 allows local users to cause a…
CVE-2009-2387 — CVSS 4.9 (medium): Unspecified vulnerability in the proc filesystem in Sun OpenSolaris snv_49 through snv_109 allows local users to cause a denial of service…
CVE-2009-2488 — CVSS 4.9 (medium): Unspecified vulnerability in the NFSv4 module in the kernel in Sun Solaris 10, and OpenSolaris snv_102 through snv_119, allows local users…
CVE-2009-3101 — CVSS 4.9 (medium): xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 10, and OpenSolaris snv_109 through snv_122, does not properly handle Trusted…
CVE-2009-0874 — CVSS 4.9 (medium): Multiple unspecified vulnerabilities in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_94, allow…
CVE-2009-0838 — CVSS 4.9 (medium): The crypto pseudo device driver in Sun Solaris 10, and OpenSolaris snv_88 through snv_102, does not properly free memory, which allows…
CVE-2009-3937 — CVSS 4.9 (medium): Memory leak in Solaris TCP sockets in Sun OpenSolaris snv_106 through snv_126 allows local users to cause a denial of service (kernel…
CVE-2009-0480 — CVSS 4.9 (medium): The IP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_82, uses an improper arena when allocating minor numbers for…
CVE-2009-0346 — CVSS 4.9 (medium): The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01…
CVE-2009-0268 — CVSS 4.9 (medium): Race condition in the pseudo-terminal (aka pty) driver module in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows local…
CVE-2010-0453 — CVSS 4.9 (medium): The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86…
CVE-2009-0168 — CVSS 4.9 (medium): Unspecified vulnerability in ppdmgr in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of…
CVE-2009-0132 — CVSS 4.9 (medium): Integer overflow in the aio_suspend function in Sun Solaris 8 through 10 and OpenSolaris, when 32-bit mode is enabled, allows local users…
CVE-2009-0131 — CVSS 4.9 (medium): The UFS implementation in the kernel in Sun OpenSolaris snv_29 through snv_90 allows local users to cause a denial of service (panic) via…
CVE-2009-0069 — CVSS 4.9 (medium): Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and…
CVE-2009-0913 — CVSS 4.7 (medium): Unspecified vulnerability in the keysock kernel module in Solaris 10 and OpenSolaris builds snv_01 through snv_108 allows local users to…
CVE-2009-0167 — CVSS 4.7 (medium): Unspecified vulnerability in lpadmin in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of…
CVE-2008-3549 — CVSS 4.7 (medium): Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to…
CVE-2009-1933 — CVSS 4.7 (medium): Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users…
CVE-2009-2596 — CVSS 4.7 (medium): Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file…
CVE-2009-0925 — CVSS 4.7 (medium): Unspecified vulnerability in Sun Solaris 10 on SPARC sun4v systems, and OpenSolaris snv_47 through snv_85, allows local users to cause a…
CVE-2008-5111 — CVSS 4.7 (medium): Unspecified vulnerability in the socket function in Sun Solaris 10 and OpenSolaris snv_57 through snv_91, when InfiniBand hardware is not…
CVE-2009-0924 — CVSS 4.7 (medium): Unspecified vulnerability in Sun OpenSolaris snv_39 through snv_45, when running in 64-bit mode on x86 architectures, allows local users to…
CVE-2009-0870 — CVSS 4.7 (medium): The NFSv4 Server module in the kernel in Sun Solaris 10, and OpenSolaris before snv_111, allow local users to cause a denial of service…
CVE-2008-4160 — CVSS 4.7 (medium): Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service…
CVE-2008-3839 — CVSS 4.7 (medium): Unspecified vulnerability in the NFS module in the kernel in Sun Solaris 10 and OpenSolaris snv_59 through snv_87, when configured as an…
CVE-2008-5699 — CVSS 4.6 (medium): The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which…
CVE-2009-2430 — CVSS 4.6 (medium): Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled…
CVE-2010-0271 — CVSS 4.6 (medium): hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing…
CVE-2009-1207 — CVSS 4.4 (medium): Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite…
CVE-2009-3706 — CVSS 4.4 (medium): Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass…
CVE-2009-4774 — CVSS 4.0 (medium): Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a…
CVE-2009-3100 — CVSS 4.0 (medium): xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSolaris snv_109 through snv_122, and X11 6.4.1 on Solaris 8 does not…
CVE-2009-2031 — CVSS 2.1 (low): smbfs in Sun OpenSolaris snv_84 through snv_110, when default mount permissions are used, allows local users to read arbitrary files, and…
CVE-2008-3426 — CVSS 2.1 (low): Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and…
CVE-2009-4080 — CVSS 2.1 (low): Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and…
CVE-2009-1276 — CVSS 2.1 (low): XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate…
CVE-2008-5690 — CVSS 2.1 (low): The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to…
CVE-2009-3432 — CVSS 1.9 (low): Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is…
CVE-2009-2012 — CVSS 1.9 (low): Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a…