|CVSS SCORE||4.7, (AV:L/AC:M/Au:N/C:C/I:N/A:N)|
The specific flaw exists within the dtrace implementation in SmartOS. A function within this implementation allows for arbitrary reads from kernel space. An attacker can leverage this vulnerability to read arbitrary memory from the headnode where the zone resides.
Joyent has issued an update to correct this vulnerability. More details can be found at: