CVE Catalog

CVE-2026-46914

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

5th percentile — higher than 5% of all known CVEs

Summary

A vulnerability in the Oracle Solaris product (component: Filesystem) allows a low privileged attacker with logon to the infrastructure to compromise the system. Successful attacks can lead to unauthorized access to critical data and complete denial of service.

Risk Assessment

The organization is at risk of losing data confidentiality and system availability, potentially causing significant disruptions to service operations.

Recommendation

It is recommended to update to the latest version of Oracle Solaris and implement additional security measures to restrict access to the infrastructure.

Original NVD description (English source)

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The supported version that is affected is 11.4. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Solaris accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Solaris. CVSS 3.1 Base Score 7.1 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H).

Vulnerability data from NVD (NIST) · CISA KEV · EPSS