vulnerability

Oracle Solaris 11: CVE-2017-10690 (11.4 GA)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:P/I:N/A:N)	Feb 9, 2018	Oct 19, 2018	Feb 17, 2022

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:N/A:N)

Published

Feb 9, 2018

Added

Oct 19, 2018

Modified

Feb 17, 2022

Description

In previous versions of Puppet Agent it was possible for the agent to retrieve facts from an environment that it was not classified to retrieve from. This was resolved in Puppet Agent 5.3.4, included in Puppet Enterprise 2017.3.4

Solution

oracle-solaris-11-4-upgrade-entire-11-4-11-4-0-0-1-15-0

References

CVE-2017-10690
https://attackerkb.com/topics/CVE-2017-10690
REDHAT-RHSA-2018:2927
https://support.oracle.com/epmos/faces/DocumentDisplay?id=1448883.1&displayIndex=1

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report