CVE-2024-20946

Summary

CVE-2024-20946 is a newly disclosed vulnerability affecting Oracle Solaris 11, which is part of Oracle Systems' kernel component. This vulnerability, with a base score of 5.5 in Availability, allows a low-privileged attacker with logon access to the affected infrastructure to cause a hang or frequent crashes of Oracle Solaris, leading to a Denial of Service (DoS) condition. While the impact on confidentiality and integrity is minimal, the potential disruption to system availability makes this an easily exploitable threat. Successful attacks may result in a complete system crash, rendering the Oracle Solaris instance unresponsive.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.