8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.1 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.1%
10/18/2022
High
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges.
Oracle VirtualBox earlier than 6.1.40
Update to the latest version
Download VirtualBox
Oracle Critical Patch Update Advisory – October 2022
OSI
CVE-2022-216274.4Warning
CVE-2022-394268.1Critical
CVE-2022-394258.1Critical
CVE-2022-216207.5Critical
CVE-2022-394248.1Critical
CVE-2022-394278.8Critical
CVE-2022-394217.3High
CVE-2022-216216.0High
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21620
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21621
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21627
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39421
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39424
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39425
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39426
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39427
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Oracle-VirtualBox/
www.oracle.com/security-alerts/cpuoct2022.html#AppendixOVIR
www.virtualbox.org/wiki/Downloads
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
7.1 High
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
72.1%