This page lists publicly disclosed CVE vulnerabilities affecting sun cluster (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2003-1588 | Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain sensitive information by reading this file. | [email protected] | 1.9 | 0.06% | 2010-02-08 | 2026-04-29 |
| CVE-2009-3433 | Unspecified vulnerability in clsetup in the configuration utility in Sun Solaris Cluster 3.2 allows local users to gain privileges via unknown vectors. | [email protected] | 7.2 | 0.05% | 2009-09-28 | 2026-04-23 |
| CVE-2008-2539 | The Sun Cluster Global File System in Sun Cluster 3.1 on Sun Solaris 8 through 10, when an underlying ufs filesystem is used, might allow local users to read data from arbitrary deleted files, or corrupt files in global filesystems, via unspecified vectors. | [email protected] | 7.2 | 0.05% | 2008-06-03 | 2026-04-23 |
| CVE-2007-2267 | Unspecified vulnerability in Sun Cluster 3.1 and Solaris Cluster 3.2 before 20070424 allows remote authenticated users, operating from a different cluster node, to cause a denial of service (data corruption or send_mondo panic) via unspecified vectors, as demonstrated by EMC Symcli backup software 6.2.1. | [email protected] | 6.8 | 1.39% | 2007-04-25 | 2026-04-23 |
| CVE-2006-1601 | Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authorization to view arbitrary files via unspecified vectors. | [email protected] | 1.7 | 0.06% | 2006-04-04 | 2026-04-16 |
| CVE-2003-1563 | Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real Application Clusters (OPS/RAC) allows local users to cause a denial of service (cluster node panic or abort) by launching a daemon listening on a TCP port that would otherwise be used by the Distributed Lock Manager (DLM), possibly involving this daemon responding in a manner that spoofs a cluster reconfiguration. | [email protected] | 4.0 | 0.06% | 2003-12-31 | 2026-04-16 |
| CVE-2001-0078 | in.mond in Sun Cluster 2.x allows local users to read arbitrary files via a symlink attack on the status file of a host running HA-NFS. | [email protected] | 2.1 | 0.10% | 2001-02-12 | 2026-04-16 |
| CVE-2001-0077 | The clustmon service in Sun Cluster 2.x does not require authentication, which allows remote attackers to obtain sensitive information such as system logs and cluster configurations. | [email protected] | 5.0 | 0.80% | 2001-02-12 | 2026-04-16 |