Lucene search

[email protected]NVD:CVE-2014-0407

HistoryJan 15, 2014 - 4:08 p.m.

CVE-2014-0407

2014-01-1516:08:09

[email protected]

web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:P/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.2%

JSON

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0405.

Affected configurations

NVD

Node

oraclevm_virtualboxRange≤4.1.28

oraclevm_virtualboxMatch4.1.0

oraclevm_virtualboxMatch4.1.2

oraclevm_virtualboxMatch4.1.4

oraclevm_virtualboxMatch4.1.6

oraclevm_virtualboxMatch4.1.8

oraclevm_virtualboxMatch4.1.10

oraclevm_virtualboxMatch4.1.12

oraclevm_virtualboxMatch4.1.14

oraclevm_virtualboxMatch4.1.16

oraclevm_virtualboxMatch4.1.18

oraclevm_virtualboxMatch4.1.20

oraclevm_virtualboxMatch4.1.22

oraclevm_virtualboxMatch4.1.24

oraclevm_virtualboxMatch4.1.26

Node

oraclevm_virtualboxRange≤4.3.2

oraclevm_virtualboxMatch4.3.0

Node

oraclevm_virtualboxRange≤3.2.18

oraclevm_virtualboxMatch3.2.0

oraclevm_virtualboxMatch3.2.2

oraclevm_virtualboxMatch3.2.4

oraclevm_virtualboxMatch3.2.6

oraclevm_virtualboxMatch3.2.8

oraclevm_virtualboxMatch3.2.10

oraclevm_virtualboxMatch3.2.12

oraclevm_virtualboxMatch3.2.14

oraclevm_virtualboxMatch3.2.16

Node

oraclevm_virtualboxRange≤4.2.18

oraclevm_virtualboxMatch4.2.0

oraclevm_virtualboxMatch4.2.2

oraclevm_virtualboxMatch4.2.4

oraclevm_virtualboxMatch4.2.6

oraclevm_virtualboxMatch4.2.8

oraclevm_virtualboxMatch4.2.10

oraclevm_virtualboxMatch4.2.12

oraclevm_virtualboxMatch4.2.14

oraclevm_virtualboxMatch4.2.16

Node

oraclevm_virtualboxRange≤4.0.20

oraclevm_virtualboxMatch4.0

oraclevm_virtualboxMatch4.0.0

oraclevm_virtualboxMatch4.0.2

oraclevm_virtualboxMatch4.0.4

oraclevm_virtualboxMatch4.0.6

oraclevm_virtualboxMatch4.0.8

oraclevm_virtualboxMatch4.0.10

oraclevm_virtualboxMatch4.0.12

oraclevm_virtualboxMatch4.0.14

oraclevm_virtualboxMatch4.0.16

oraclevm_virtualboxMatch4.0.18

References

osvdb.org/102058

secunia.com/advisories/56490

www.debian.org/security/2014/dsa-2878

www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

www.securityfocus.com/bid/64758

www.securityfocus.com/bid/64913

www.securitytracker.com/id/1029610

exchange.xforce.ibmcloud.com/vulnerabilities/90369

3.5 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:P/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

33.2%

JSON

Related for NVD:CVE-2014-0407

debiancve2 nvd1 prion2 ubuntucve2 cve2 cvelist2 openvas7 nessus3 securityvulns2 gentoo1 mageia1 debian1 oracle1