Lucene search

China National Vulnerability DatabaseCNVD-2023-08447

HistoryJul 20, 2022 - 12:00 a.m.

Oracle Virtualization Input Validation Error Vulnerability (CNVD-2023-08447)

2022-07-2000:00:00

China National Vulnerability Database

www.cnvd.org.cn

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

JSON

Oracle Virtualization is a virtualization solution from Oracle Corporation. It is used to unify and manage the entire hardware and software architecture from the application to the disk. Oracle Virtualization has a security vulnerability that could be exploited by an attacker to cause Oracle VM VirtualBox to be taken over.

CPENameOperatorVersion
oracle vm virtualboxlt6.1.36

CPE	Name	Operator	Version
	oracle vm virtualbox	lt	6.1.36

8.2 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

JSON

Related for CNVD-2023-08447