Vulnerability Details : CVE-2008-4722
Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) 2.0.1.5 through 2.0.4.26 allows remote authenticated users to (1) access the service processor (SP) and cause a denial of service (shutdown or reboot), or (2) access the host operating system and have an unspecified impact, via unknown vectors.
Vulnerability category: BypassGain privilegeDenial of service
Products affected by CVE-2008-4722
- cpe:2.3:a:sun:integrated_lights-out_manager:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:sparc_enterprise_server_t5120:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:sparc_enterprise_server_t5220:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:sparc_enterprise_server_t5140:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:sparc_enterprise_server_t5240:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:sparc_enterprise_server_t5440:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_t6320_server_module:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:netra:*:7.1.6:*:*:*:*:*:*
- cpe:2.3:h:sun:netra:*:7.1.6:*:*:*:*:*:*
- cpe:2.3:h:sun:netra:*:7.1.4a:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4100_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4200_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4100m2_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4200m2_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4600_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4600m2_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4500_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4540_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4140_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4240_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4440_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x2250_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4150_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4250_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:fire_x4450_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_6000_modular_system_with_chassis:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_6048_modular_system_with_chassis:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x6220_with_server_module_software:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x6250_with_server_module_software:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x6450_with_server_module_software:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_8000_modular_system:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_8000p_modular_system:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x8400:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x8420:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x8440:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:blade_x8450:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:netra_x4200m2_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:netra_x4250_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:sun:netra_x4450:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-4722
0.74%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 81 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-4722
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.0
|
HIGH | AV:N/AC:L/Au:S/C:C/I:C/A:C |
8.0
|
10.0
|
NIST |
CWE ids for CVE-2008-4722
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-4722
Jump to