8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.058 Low
EPSS
Percentile
93.2%
04/20/2021
High
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service.
Oracle VirtualBox earlier than 6.1.20
Update to the latest version
Download VirtualBox
Oracle Critical Patch Update Advisory – April 2021
OSI
CVE-2021-22798.1Critical
CVE-2021-22965.3High
CVE-2021-22648.4Critical
CVE-2021-23124.4Warning
CVE-2021-22975.3High
CVE-2021-22914.7Warning
CVE-2021-23066.0High
CVE-2021-23097.5Critical
CVE-2021-22827.1High
CVE-2021-22666.0High
CVE-2021-23216.0High
CVE-2021-22857.1High
CVE-2021-22877.1High
CVE-2021-22817.1High
CVE-2021-22837.1High
CVE-2021-21457.5Critical
CVE-2021-22508.2Critical
CVE-2021-23107.5Critical
CVE-2021-22867.1High
CVE-2021-22847.1High
CVE-2021-22807.1High
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2145
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2250
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2264
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2266
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2279
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2280
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2281
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2282
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2283
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2284
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2285
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2286
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2287
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2291
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2296
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2297
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2306
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2309
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2310
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2312
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2321
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Oracle-VirtualBox/
www.oracle.com/security-alerts/cpuapr2021.html#AppendixOVIR
www.virtualbox.org/wiki/Downloads
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
7.2 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.058 Low
EPSS
Percentile
93.2%