CVE-2025-53070

📊 5.5 MEDIUM⚡ 0.0%🎯 0 exploits

📅 Published Oct 21, 2025

📋 Status: Modified

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Solaris, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Solaris. CVSS 3.1 Base Score 5.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:N/A:H).

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

1 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
💻OS	oracle	solaris	11	Vulnerable	cpe:2.3:o:oracle:solaris:11:::::::*

💻

oracle / solaris

Operating System

Vulnerable

Version: 11

CPE:

cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*

Metrics

5.5 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:N/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

HIGH

User Interaction:

REQUIRED

Confidentiality:

NONE

Integrity:

NONE

Availability:

HIGH

Scope:

CHANGED

🔍 Technical Details

Analysis Status

Modified

CVSS Details

5.5 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)2.6th percentile

Last updated: Oct 31, 2025

Exploitation probability within 30 days

Published Date

Oct 21, 2025 (11 days ago)

Last Modified

Oct 27, 2025 (5 days ago)

Security Weaknesses2

CWE-267

References2

NVDgeneral