CVE-2023-21898

2023-01-1723:35:27

oracle

www.cve.org

information security

cve-2023-21898

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

High

EPSS

Percentile

16.3%

JSON

CNA Affected

[
  {
    "vendor": "Oracle Corporation",
    "product": "VM VirtualBox",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThan": "6.1.42",
        "versionType": "semver"
      },
      {
        "version": "*",
        "status": "affected",
        "lessThan": "7.0.6",
        "versionType": "semver"
      }
    ]
  }
]