FKIE_CVE-2011-3522

Vulnerability from fkie_nvd - Published: 2011-10-18 22:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Unspecified vulnerability in SysFW 8.0 on certain SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade based servers allows local users to affect confidentiality, related to Integrated Lights Out Manager CLI.
References
secalert_us@oracle.comhttp://osvdb.org/76477
secalert_us@oracle.comhttp://secunia.com/advisories/46509
secalert_us@oracle.comhttp://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.htmlVendor Advisory
secalert_us@oracle.comhttp://www.securityfocus.com/bid/50261
secalert_us@oracle.comhttp://www.securitytracker.com/id?1026221
secalert_us@oracle.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/70797
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/76477
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/46509
af854a3a-2127-422b-91ae-364da2661108http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.htmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/50261
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1026221
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/70797
Impacted products
Vendor Product Version
oracle netra_sparc_t3-1 -
oracle netra_sparc_t3-1b -
oracle sparc_t3-1 -
oracle sparc_t3-1b -
oracle sparc_t3-4 -
oracle sun_blade_x6270 -
oracle sun_blade_x6270_m2 -
oracle sun_blade_x6275 -
oracle sun_blade_x6275_m2 -
oracle sun_blade_x6440_m2 -
oracle sun_blade_x6450 -
oracle sun_fire_x2270 -
oracle sun_fire_x2270_m2 -
oracle sun_fire_x4170 -
oracle sun_fire_x4170_m2 -
oracle sun_fire_x4270 -
oracle sun_fire_x4270_m2 -
oracle sun_fire_x4470 -
oracle sun_fire_x4470_m2 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:oracle:netra_sparc_t3-1:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B04C334-C863-47C0-A180-26254ACB1065",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:netra_sparc_t3-1b:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26BC7F09-2F19-4692-BF40-239BF3B007F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sparc_t3-1:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "92144B15-6A30-4451-9CB8-3E94E2550F4D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sparc_t3-1b:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EF19DEF8-E1BC-48BD-9852-071F57D31B07",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sparc_t3-4:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4164246-50E7-46E5-BCB9-1CE4913361E4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6270:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1678A9BF-19FF-4639-8BD4-CD2818B39B61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6270_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FAA235C-C9A3-4261-86FF-41141BB7F49C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6275:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6AFBF58-ED2E-4774-8AD7-256F608992A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6275_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "614AEA87-314B-4407-B29B-A36BDF354DE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6440_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "28F670BC-6724-45C0-B2E5-40CF7ED6439D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_blade_x6450:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC4783DA-66FC-4E1B-99EF-39B0845AA820",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x2270:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "13FAE7CC-0071-4C92-B423-D557678FEAA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x2270_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B769E6C9-70FB-4564-9B89-EFBD4227CF6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4170:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A15BDBE-0318-442B-8181-6DEE3B642892",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4170_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B7B8BA3-B518-4131-87BD-CFC855AB9C16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4270:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7278A0A-6189-467B-93C9-06D4029466ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4270_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF783139-8E39-4CA9-B782-BD9E9458D321",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4470:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "84401A7C-B1E5-4D3C-8C3D-B70F9C6CA7F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:oracle:sun_fire_x4470_m2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "59BA2C0F-31F3-4F6B-80AF-95BD8E26F389",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in SysFW 8.0 on certain SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade based servers allows local users to affect confidentiality, related to Integrated Lights Out Manager CLI."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en SysFW v8.0 en SPARC T3, Netra SPARC T3, Sun Fire, y los servidores basados en Sun Blade permite a usuarios locales afectar la confidencialidad, en relaci\u00f3n con Integrated Lights Out Manager CLI."
    }
  ],
  "id": "CVE-2011-3522",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-10-18T22:55:03.777",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "url": "http://osvdb.org/76477"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://secunia.com/advisories/46509"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securityfocus.com/bid/50261"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securitytracker.com/id?1026221"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70797"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/76477"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/46509"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/50261"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1026221"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70797"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.