CVE-2011-3522 - Vulnerability Details

Unspecified vulnerability in SysFW 8.0 on certain SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade based servers allows local users to affect confidentiality, related to Integrated Lights Out Manager CLI.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00079.

Key SSVC decision points have not yet been added.

Vendors	Products
Oracle	Netra Sparc T3-1 Netra Sparc T3-1b Sparc T3-1 Sparc T3-1b Sparc T3-4 Sun Blade X6270 Sun Blade X6270 M2 Sun Blade X6275 Sun Blade X6275 M2 Sun Blade X6440 M2 Sun Blade X6450 Sun Fire X2270 Sun Fire X2270 M2 Sun Fire X4170 Sun Fire X4170 M2 Sun Fire X4270 Sun Fire X4270 M2 Sun Fire X4470 Sun Fire X4470 M2

Configuration 1 [-]

OR	cpe:2.3:h:oracle:netra_sparc_t3-1:-:::::::*
	cpe:2.3:h:oracle:netra_sparc_t3-1b:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-1:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-1b:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-4:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6270:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6270_m2:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6275:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6275_m2:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6440_m2:-:::::::*
	cpe:2.3:h:oracle:sun_blade_x6450:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x2270:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x2270_m2:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4170:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4170_m2:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4270:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4270_m2:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4470:-:::::::*
	cpe:2.3:h:oracle:sun_fire_x4470_m2:-:::::::*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2011-3485	Unspecified vulnerability in SysFW 8.0 on certain SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade based servers allows local users to affect confidentiality, related to Integrated Lights Out Manager CLI.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://osvdb.org/76477
http://secunia.com/advisories/46509
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
http://www.securityfocus.com/bid/50261
http://www.securitytracker.com/id?1026221
https://exchange.xforce.ibmcloud.com/vulnerabilities/70797

History

No history.

MITRE

Status: PUBLISHED

Assigner: oracle

Published: 2011-10-18T22:00:00

Updated: 2024-08-06T23:37:48.180Z

Reserved: 2011-09-16T00:00:00

Link: CVE-2011-3522

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-10-18T22:55:03.777

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-3522

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object