How severe is CVE-2016-3585?

High severity. CVSS v3 base score is 7.4 out of 10.

Vulnerability in Oracle Integrated_lights_out_manager_firmware

CVE-2016-3585

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect confidentiality and integrity via vectors related to Emulex.

EPSS: 0.003 (57.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.4 (High). Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N.

Affected products

Oracle Integrated_lights_out_manager_firmware — versions 3.0, 3.1, 3.2
N/a — versions n/a

References

1036408 (vdb-entry, x_refsource_SECTRACK)
secalert_us@oracle.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
91787 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
91952 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2016-3585?: CVE-2016-3585 is a high-severity vulnerability in Oracle Integrated_lights_out_manager_firmware. CVSS score: 7.4/10. Published 2016-07-21.
How severe is CVE-2016-3585?: High severity. CVSS v3 base score is 7.4 out of 10.