8.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.3%
01/27/2017
High
Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause a denial of service, gain priveleges, obtain sensitive information.
Oracle VM VirtualBox earlier than 5.0.32
Oracle VM VirtualBox 5.1.x earlier than 5.1.14
Update to latest versions
Download Oracle VM VirtualBox
Oracle Critical Patch Update Advisory
OSI
CVE-2017-33166.0High
CVE-2017-32903.2Warning
CVE-2017-33323.6Warning
Public exploits exist for this vulnerability.
www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixOVIR
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3290
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3316
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3332
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Oracle-VirtualBox/
www.virtualbox.org/wiki/Downloads
8.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
6 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.3%