Lucene search

[email protected]NVD:CVE-2014-2477

HistoryJul 17, 2014 - 5:10 a.m.

CVE-2014-2477

2014-07-1705:10:14

[email protected]

web.nvd.nist.gov

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.1%

JSON

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2486.

Affected configurations

NVD

Node

oraclevm_virtualboxRange≤4.0.24

oraclevm_virtualboxMatch4.0

oraclevm_virtualboxMatch4.0.0

oraclevm_virtualboxMatch4.0.2

oraclevm_virtualboxMatch4.0.4

oraclevm_virtualboxMatch4.0.6

oraclevm_virtualboxMatch4.0.8

oraclevm_virtualboxMatch4.0.10

oraclevm_virtualboxMatch4.0.12

oraclevm_virtualboxMatch4.0.14

oraclevm_virtualboxMatch4.0.16

oraclevm_virtualboxMatch4.0.18

oraclevm_virtualboxMatch4.0.20

oraclevm_virtualboxMatch4.0.22

Node

oraclevm_virtualboxRange≤4.3.10

oraclevm_virtualboxMatch4.3.0

oraclevm_virtualboxMatch4.3.2

oraclevm_virtualboxMatch4.3.4

oraclevm_virtualboxMatch4.3.6

oraclevm_virtualboxMatch4.3.8

Node

oraclevm_virtualboxRange≤3.2.22

oraclevm_virtualboxMatch3.2

oraclevm_virtualboxMatch3.2.0

oraclevm_virtualboxMatch3.2.2

oraclevm_virtualboxMatch3.2.4

oraclevm_virtualboxMatch3.2.6

oraclevm_virtualboxMatch3.2.8

oraclevm_virtualboxMatch3.2.10

oraclevm_virtualboxMatch3.2.12

oraclevm_virtualboxMatch3.2.14

oraclevm_virtualboxMatch3.2.16

oraclevm_virtualboxMatch3.2.18

oraclevm_virtualboxMatch3.2.20

Node

oraclevm_virtualboxRange≤4.1.32

oraclevm_virtualboxMatch4.1.0

oraclevm_virtualboxMatch4.1.2

oraclevm_virtualboxMatch4.1.4

oraclevm_virtualboxMatch4.1.6

oraclevm_virtualboxMatch4.1.8

oraclevm_virtualboxMatch4.1.10

oraclevm_virtualboxMatch4.1.12

oraclevm_virtualboxMatch4.1.14

oraclevm_virtualboxMatch4.1.16

oraclevm_virtualboxMatch4.1.18

oraclevm_virtualboxMatch4.1.20

oraclevm_virtualboxMatch4.1.22

oraclevm_virtualboxMatch4.1.24

oraclevm_virtualboxMatch4.1.26

oraclevm_virtualboxMatch4.1.28

oraclevm_virtualboxMatch4.1.30

Node

oraclevm_virtualboxRange≤4.2.24

oraclevm_virtualboxMatch4.2.0

oraclevm_virtualboxMatch4.2.2

oraclevm_virtualboxMatch4.2.4

oraclevm_virtualboxMatch4.2.6

oraclevm_virtualboxMatch4.2.8

oraclevm_virtualboxMatch4.2.10

oraclevm_virtualboxMatch4.2.12

oraclevm_virtualboxMatch4.2.14

oraclevm_virtualboxMatch4.2.16

oraclevm_virtualboxMatch4.2.18

oraclevm_virtualboxMatch4.2.20

oraclevm_virtualboxMatch4.2.22

References

seclists.org/fulldisclosure/2014/Dec/23

www.exploit-db.com/exploits/34333

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securityfocus.com/bid/68613

www.vmware.com/security/advisories/VMSA-2014-0012.html

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.1%

JSON

Related for NVD:CVE-2014-2477

debiancve2 cve2 cvelist2 nvd1 ubuntucve2 prion2 openvas4 korelogic1 zdt1 packetstorm2 canvas1 securityvulns2 kaspersky1 nessus2 debian1 osv1 oracle1