Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.VIRTUALBOX_APR_2021_CPU.NASL
HistoryApr 21, 2021 - 12:00 a.m.

Oracle VM VirtualBox (April 2021 CPU)

2021-04-2100:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21

7.5 High

AI Score

Confidence

High

JSON

The version of Virtualbox installed on the remote host is prior to 6.1.20. It is, therefore, affected by multiple vulnerabilities as referenced in the April 2021 CPU advisory:

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. (CVE-2021-2250)

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. (CVE-2021-2264)

  • Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. This vulnerability applies to Windows systems only. (CVE-2021-2312)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable Network Security, Inc.
##

include('compat.inc');

if (description)
{
  script_id(148897);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/03");

  script_cve_id(
    "CVE-2021-2145",
    "CVE-2021-2250",
    "CVE-2021-2264",
    "CVE-2021-2266",
    "CVE-2021-2279",
    "CVE-2021-2280",
    "CVE-2021-2281",
    "CVE-2021-2282",
    "CVE-2021-2283",
    "CVE-2021-2284",
    "CVE-2021-2285",
    "CVE-2021-2286",
    "CVE-2021-2287",
    "CVE-2021-2291",
    "CVE-2021-2296",
    "CVE-2021-2297",
    "CVE-2021-2306",
    "CVE-2021-2309",
    "CVE-2021-2310",
    "CVE-2021-2312"
  );
  script_xref(name:"IAVA", value:"2021-A-0192-S");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");

  script_name(english:"Oracle VM VirtualBox (April 2021 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The version of Virtualbox installed on the remote host is prior to 6.1.20. It is, therefore, affected by multiple  
vulnerabilities as referenced in the April 2021 CPU advisory:

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version 
    that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to 
    the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability 
    is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this 
    vulnerability can result in takeover of Oracle VM VirtualBox. (CVE-2021-2250)

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version 
    that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows low privileged attacker with logon to 
    the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability 
    is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this 
    vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle 
    VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM 
    VirtualBox accessible data. (CVE-2021-2264)

  - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version 
    that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to 
    the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of 
    this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) 
    of Oracle VM VirtualBox. This vulnerability applies to Windows systems only. (CVE-2021-2312)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/a/tech/docs/cpuapr2021cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuapr2021.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the April 2021 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-2279");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-2264");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/04/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/04/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/04/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:vm_virtualbox");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("virtualbox_installed.nasl", "macosx_virtualbox_installed.nbin");
  script_require_ports("installed_sw/Oracle VM VirtualBox", "installed_sw/VirtualBox");

  exit(0);
}

include('vcf.inc');

if (get_kb_item('installed_sw/Oracle VM VirtualBox'))
  app_info = vcf::get_app_info(app:'Oracle VM VirtualBox', win_local:TRUE);
else
  app_info = vcf::get_app_info(app:'VirtualBox');

constraints = [{ 'fixed_version' : '6.1.20' }];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
oraclevm_virtualboxcpe:/a:oracle:vm_virtualbox

References

Related

suse 3
mageia 1
nessus 4
kaspersky 1
archlinux 1
gentoo 1
thn 1
veracode 18
cve 20
ubuntucve 20
prion 20
debiancve 20
zdi 9
oracle 1
suse
suse
Security update for virtualbox (important)
2021-07-06 00:00:00
Security update for virtualbox (important)
2021-05-14 00:00:00
Security update for virtualbox (important)
2021-05-01 00:00:00
mageia
mageia
Updated virtualbox packages fix security vulnerabilities
2021-04-24 01:53:14
nessus
nessus
openSUSE 15 Security Update : virtualbox (openSUSE-SU-2021:0977-1)
2021-10-10 00:00:00
openSUSE 15 Security Update : virtualbox (openSUSE-SU-2021:0723-1)
2021-05-18 00:00:00
GLSA-202208-36 : Oracle VirtualBox: Multiple Vulnerabilities
2022-08-31 00:00:00
kaspersky
kaspersky
KLA12160 Multiple vulnerabilities in Oracle VirtualBox
2021-04-20 00:00:00
archlinux
archlinux
[ASA-202104-9] virtualbox: multiple issues
2021-04-29 00:00:00
gentoo
gentoo
Oracle VirtualBox: Multiple Vulnerabilities
2022-08-31 00:00:00
thn
thn
Researchers Detail Privilege Escalation Bugs Reported in Oracle VirtualBox
2021-11-23 12:06:00
veracode
veracode
Privilege Escalation
2021-04-22 23:14:56
Information Disclosure
2021-04-22 00:52:23
Privilege Escalation
2021-04-22 23:44:27
cve
cve
CVE-2021-2282
2021-04-22 22:15:00
CVE-2021-2280
2021-04-22 22:15:00
CVE-2021-2291
2021-04-22 22:15:00
ubuntucve
ubuntucve
CVE-2021-2291
2021-04-22 00:00:00
CVE-2021-2279
2021-04-22 00:00:00
CVE-2021-2306
2021-04-22 00:00:00
prion
prion
Design/Logic Flaw
2021-04-22 22:15:00
Buffer overflow
2021-04-22 22:15:00
Buffer overflow
2021-04-22 22:15:00
debiancve
debiancve
CVE-2021-2306
2021-04-22 22:15:00
CVE-2021-2291
2021-04-22 22:15:00
CVE-2021-2280
2021-04-22 22:15:00
zdi
zdi
Oracle VirtualBox LsiLogicSCSI Time-Of-Check Time-Of-Use Information Disclosure Vulnerability
2021-04-22 00:00:00
Oracle VirtualBox VGA Out-Of-Bounds Read Information Disclosure Vulnerability
2021-04-22 00:00:00
Oracle VirtualBox NAT Heap-based Buffer Overflow Privilege Escalation Vulnerability
2021-04-22 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00

7.5 High

AI Score

Confidence

High

JSON
Related for VIRTUALBOX_APR_2021_CPU.NASL
suse3mageia1nessus4kaspersky1archlinux1gentoo1thn1veracode18cve20ubuntucve20prion20debiancve20zdi9oracle1