Filtered by vendor Sun
Subscribe
Total
1709 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-43359 | 1 Sun | 1 Ehrd | 2024-02-04 | 9.0 HIGH | 8.8 HIGH |
Sunnet eHRD has broken access control vulnerability, which allows a remote attacker to access account management page after being authenticated as a general user, then perform privilege escalation to execute arbitrary code and control the system or interrupt services. | |||||
CVE-2021-43358 | 1 Sun | 1 Ehrd | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
Sunnet eHRD has inadequate filtering for special characters in URLs, which allows a remote attacker to perform path traversal attacks without authentication, access restricted paths and download system files. | |||||
CVE-2020-10510 | 1 Sun | 1 Ehrd | 2024-02-04 | 4.0 MEDIUM | 6.5 MEDIUM |
Sunnet eHRD, a human training and development management system, contains a vulnerability of Broken Access Control. After login, attackers can use a specific URL, access unauthorized functionality and data. | |||||
CVE-2020-10508 | 1 Sun | 1 Ehrd | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Sunnet eHRD, a human training and development management system, improperly stores system files. Attackers can use a specific URL and capture confidential information. | |||||
CVE-2020-10509 | 1 Sun | 1 Ehrd | 2024-02-04 | 4.3 MEDIUM | 6.1 MEDIUM |
Sunnet eHRD, a human training and development management system, contains vulnerability of Cross-Site Scripting (XSS), attackers can inject arbitrary command into the system and launch XSS attack. | |||||
CVE-2014-0442 | 2 Oracle, Sun | 2 Sunos, Sunos | 2024-02-04 | 4.6 MEDIUM | N/A |
Unspecified vulnerability in Oracle Solaris 9, 10, and 11.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Print Filter Utility. | |||||
CVE-2014-4224 | 2 Oracle, Sun | 2 Sunos, Sunos | 2024-02-04 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11.1 allows local users to affect availability via unknown vectors related to sockfs. | |||||
CVE-2014-6508 | 1 Sun | 1 Sunos | 2024-02-04 | 7.8 HIGH | N/A |
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows remote attackers to affect availability via vectors related to iSCSI Data Mover (IDM). | |||||
CVE-2015-0428 | 1 Sun | 1 Sunos | 2024-02-04 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Resource Control. | |||||
CVE-2014-6470 | 1 Sun | 1 Sunos | 2024-02-04 | 6.8 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Archive Utility. | |||||
CVE-2014-6524 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel. | |||||
CVE-2014-6490 | 1 Sun | 1 Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability via vectors related to SMB server user component. | |||||
CVE-2014-0447 | 2 Oracle, Sun | 2 Sunos, Sunos | 2024-02-04 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in Oracle Solaris 10 and 11.1 allows local users to affect availability via unknown vectors related to Kernel, a different vulnerability than CVE-2013-5876. | |||||
CVE-2014-4280 | 1 Sun | 1 Sunos | 2024-02-04 | 4.6 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via vectors related to IPS transfer module, a different vulnerability than CVE-2014-4284. | |||||
CVE-2014-4276 | 1 Sun | 1 Sunos | 2024-02-04 | 7.5 HIGH | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Common Internet File System (CIFS). | |||||
CVE-2014-4215 | 2 Oracle, Sun | 2 Sunos, Sunos | 2024-02-04 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in Oracle Solaris 10 and 11.1 allows local users to affect availability via vectors related to CPU performance counters (CPC) drivers, a different vulnerability than CVE-2013-5862. | |||||
CVE-2014-4277 | 1 Sun | 1 Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect confidentiality via unknown vectors related to Automated Install Engine, a different vulnerability than CVE-2014-4283. | |||||
CVE-2014-6570 | 1 Sun | 1 Sunos | 2024-02-04 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to File System, a different vulnerability than CVE-2014-6600 and CVE-2015-0397. | |||||
CVE-2014-4283 | 1 Sun | 1 Sunos | 2024-02-04 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect confidentiality via unknown vectors related to Automated Install Engine, a different vulnerability than CVE-2014-4277. | |||||
CVE-2014-6521 | 1 Sun | 1 Sunos | 2024-02-04 | 7.2 HIGH | N/A |
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, integrity, and availability via vectors related to CDE - Power Management Utility. |