Lucene search

K
kasperskyKaspersky LabKLA10798
HistoryApr 19, 2016 - 12:00 a.m.

KLA10798 Multiple vulnerabilities at Oracle VM VirtualBox

2016-04-1900:00:00
Kaspersky Lab
threats.kaspersky.com
39

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

89.7%

Detect date:

04/19/2016

Severity:

Warning

Description:

An unspecified vulnerabilities were found in Oracle VM VirtualBox. By exploiting these vulnerabilities malicious users can cause denial of service and loss of integrity or obtain sensitive information.

Affected products:

Oracle VM VirtualBox versions earlier than 5.0.18

Solution:

Update to the latest version
Get VirtualBox

Original advisories:

Oracle Bulletin

Impacts:

OSI

Related products:

Oracle VirtualBox

CVE-IDS:

CVE-2015-31955.0Warning
CVE-2016-06784.1Warning
CVE-2015-31974.3Warning

Exploitation:

Public exploits exist for this vulnerability.

6.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.024 Low

EPSS

Percentile

89.7%