Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.VIRTUALBOX_6_1_40_OCT_2022_CPU.NASL
HistoryOct 20, 2022 - 12:00 a.m.

Oracle VM VirtualBox < 6.1.40 (Oct 2022 CPU)

2022-10-2000:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

The version of VirtualBox installed on the remote host is prior to 6.1.40. It is, therefore, affected by multiple vulnerabilities as referenced in the Oct 2022 CPU advisory:

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. (CVE-2022-39424)

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. (CVE-2022-39425)

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. (CVE-2022-39426)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(166292);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/09");

  script_cve_id(
    "CVE-2022-21620",
    "CVE-2022-21621",
    "CVE-2022-21627",
    "CVE-2022-39424",
    "CVE-2022-39425",
    "CVE-2022-39426"
  );
  script_xref(name:"IAVA", value:"2022-A-0429-S");

  script_name(english:"Oracle VM VirtualBox < 6.1.40 (Oct 2022 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The version of VirtualBox installed on the remote host is prior to 6.1.40. It is, therefore, affected by multiple  
vulnerabilities as referenced in the Oct 2022 CPU advisory:

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions 
    that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with 
    network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result 
    in takeover of Oracle VM VirtualBox. (CVE-2022-39424)

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions 
    that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with 
    network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result 
    in takeover of Oracle VM VirtualBox. (CVE-2022-39425)

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions 
    that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with 
    network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result 
    in takeover of Oracle VM VirtualBox. (CVE-2022-39426)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpuoct2022cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuoct2022.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the Oct 2022 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-39426");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/10/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/10/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/10/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:vm_virtualbox");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("virtualbox_installed.nasl", "macosx_virtualbox_installed.nbin");
  script_require_ports("installed_sw/Oracle VM VirtualBox", "installed_sw/VirtualBox");

  exit(0);
}

include('vcf.inc');

var app_info = NULL;

if (get_kb_item('installed_sw/Oracle VM VirtualBox'))
  app_info = vcf::get_app_info(app:'Oracle VM VirtualBox', win_local:TRUE);
else
  app_info = vcf::get_app_info(app:'VirtualBox');

var constraints = [{ 'fixed_version' : '6.1.40' }];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
oraclevm_virtualboxcpe:/a:oracle:vm_virtualbox

Related

mageia 1
kaspersky 1
gentoo 1
nessus 1
veracode 6
prion 6
ubuntucve 6
debiancve 6
cve 6
zdi 3
cnvd 1
oracle 1
mageia
mageia
Updated virtualbox packages fix security vulnerabilities
2022-10-27 12:38:00
kaspersky
kaspersky
KLA20010 Multiple vulnerabilities in Oracle VirtualBox
2022-10-18 00:00:00
gentoo
gentoo
Oracle VirtualBox: Multiple Vulnerabilities
2022-12-19 00:00:00
nessus
nessus
GLSA-202212-03 : Oracle VirtualBox: Multiple Vulnerabilities
2022-12-18 00:00:00
veracode
veracode
Authentication Bypass
2022-11-16 19:21:40
Denial Of Service (DoS)
2022-10-23 23:02:38
Denial Of Service (DoS)
2022-10-23 23:01:21
prion
prion
Design/Logic Flaw
2022-10-18 21:15:00
Design/Logic Flaw
2022-10-18 21:15:00
Design/Logic Flaw
2022-10-18 21:15:00
ubuntucve
ubuntucve
CVE-2022-39426
2022-10-18 00:00:00
CVE-2022-39425
2022-10-18 00:00:00
CVE-2022-39424
2022-10-18 00:00:00
debiancve
debiancve
CVE-2022-39424
2022-10-18 21:15:00
CVE-2022-39425
2022-10-18 21:15:00
CVE-2022-21621
2022-10-18 21:15:00
cve
cve
CVE-2022-39425
2022-10-18 21:15:00
CVE-2022-21621
2022-10-18 21:15:00
CVE-2022-39424
2022-10-18 21:15:00
zdi
zdi
Oracle VirtualBox VRDP Stack-based Buffer Overflow Remote Code Execution Vulnerability
2022-10-21 00:00:00
Oracle VirtualBox VRDP Integer Overflow Remote Code Execution Vulnerability
2022-10-21 00:00:00
Oracle VirtualBox VRDP Double Free Remote Code Execution Vulnerability
2022-10-21 00:00:00
cnvd
cnvd
Oracle VM VirtualBox Denial of Service Vulnerability (CNVD-2023-11169)
2022-10-19 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
JSON
Related for VIRTUALBOX_6_1_40_OCT_2022_CPU.NASL
mageia1kaspersky1gentoo1nessus1veracode6prion6ubuntucve6debiancve6cve6zdi3cnvd1oracle1