CVE-2025-30700

📊 3.5 LOW⚡ 0.0%🎯 0 exploits

📅 Published Apr 15, 2025

📋 Status: Analyzed

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Solaris accessible data. CVSS 3.1 Base Score 3.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N).

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

1 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
💻OS	oracle	solaris	11	Vulnerable	cpe:2.3:o:oracle:solaris:11:::::::*

💻

oracle / solaris

Operating System

Vulnerable

Version: 11

CPE:

cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*

Metrics

3.5 LOWCVSS v3.1[email protected]

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

Attack Vector:

NETWORK

Complexity:

LOW

Privileges:

LOW

User Interaction:

REQUIRED

Confidentiality:

LOW

Integrity:

NONE

Availability:

NONE

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

3.5 (LOW)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)8.9th percentile

Last updated: Oct 31, 2025

Exploitation probability within 30 days

Published Date

Apr 15, 2025 (6 months ago)

Last Modified

Apr 21, 2025 (6 months ago)

Security Weaknesses1

CWE-284

References2

NVDpatch