KLA11027 Multiple vulnerabilities in Oracle VM VirtualBox

Detect date:

04/24/2017

Severity:

Warning

Description:

Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause a denial of service, read and write accesible data and possibly to obtain sensitive information.

Affected products:

Oracle VM VirtualBox earlier than 5.0.38
Oracle VM VirtualBox 5.1.x earlier than 5.1.20

Solution:

Update to the latest versions
Download Oracle VM VirtualBox

Original advisories:

Oracle Critical Patch Update Advisory

Impacts:

OSI

Related products:

Oracle VirtualBox

CVE-IDS:

CVE-2017-35753.6Warning
CVE-2017-35764.6Warning
CVE-2017-35131.9Warning
CVE-2017-35873.6Warning
CVE-2017-35584.6Warning
CVE-2017-35594.3Warning
CVE-2017-35614.6Warning
CVE-2017-35634.6Warning

Exploitation:

Public exploits exist for this vulnerability.