Lucene search

[email protected]NVD:CVE-2014-2486

HistoryJul 17, 2014 - 5:10 a.m.

CVE-2014-2486

2014-07-1705:10:14

[email protected]

web.nvd.nist.gov

3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:S/C:N/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.1%

JSON

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-2477.

Affected configurations

NVD

Node

oraclevm_virtualboxRange≤3.2.22

oraclevm_virtualboxMatch3.2

oraclevm_virtualboxMatch3.2.0

oraclevm_virtualboxMatch3.2.2

oraclevm_virtualboxMatch3.2.4

oraclevm_virtualboxMatch3.2.6

oraclevm_virtualboxMatch3.2.8

oraclevm_virtualboxMatch3.2.10

oraclevm_virtualboxMatch3.2.12

oraclevm_virtualboxMatch3.2.14

oraclevm_virtualboxMatch3.2.16

oraclevm_virtualboxMatch3.2.18

oraclevm_virtualboxMatch3.2.20

Node

oraclevm_virtualboxRange≤4.3.10

oraclevm_virtualboxMatch4.3.0

oraclevm_virtualboxMatch4.3.2

oraclevm_virtualboxMatch4.3.4

oraclevm_virtualboxMatch4.3.6

oraclevm_virtualboxMatch4.3.8

Node

oraclevm_virtualboxRange≤4.0.24

oraclevm_virtualboxMatch4.0

oraclevm_virtualboxMatch4.0.0

oraclevm_virtualboxMatch4.0.2

oraclevm_virtualboxMatch4.0.4

oraclevm_virtualboxMatch4.0.6

oraclevm_virtualboxMatch4.0.8

oraclevm_virtualboxMatch4.0.10

oraclevm_virtualboxMatch4.0.12

oraclevm_virtualboxMatch4.0.14

oraclevm_virtualboxMatch4.0.16

oraclevm_virtualboxMatch4.0.18

oraclevm_virtualboxMatch4.0.20

oraclevm_virtualboxMatch4.0.22

Node

oraclevm_virtualboxRange≤4.1.32

oraclevm_virtualboxMatch4.1.0

oraclevm_virtualboxMatch4.1.2

oraclevm_virtualboxMatch4.1.4

oraclevm_virtualboxMatch4.1.6

oraclevm_virtualboxMatch4.1.8

oraclevm_virtualboxMatch4.1.10

oraclevm_virtualboxMatch4.1.12

oraclevm_virtualboxMatch4.1.14

oraclevm_virtualboxMatch4.1.16

oraclevm_virtualboxMatch4.1.18

oraclevm_virtualboxMatch4.1.20

oraclevm_virtualboxMatch4.1.22

oraclevm_virtualboxMatch4.1.24

oraclevm_virtualboxMatch4.1.26

oraclevm_virtualboxMatch4.1.28

oraclevm_virtualboxMatch4.1.30

Node

oraclevm_virtualboxRange≤4.2.24

oraclevm_virtualboxMatch4.2.0

oraclevm_virtualboxMatch4.2.2

oraclevm_virtualboxMatch4.2.4

oraclevm_virtualboxMatch4.2.6

oraclevm_virtualboxMatch4.2.8

oraclevm_virtualboxMatch4.2.10

oraclevm_virtualboxMatch4.2.12

oraclevm_virtualboxMatch4.2.14

oraclevm_virtualboxMatch4.2.16

oraclevm_virtualboxMatch4.2.18

oraclevm_virtualboxMatch4.2.20

oraclevm_virtualboxMatch4.2.22

References

seclists.org/fulldisclosure/2014/Dec/23

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.vmware.com/security/advisories/VMSA-2014-0012.html

3 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:S/C:N/I:P/A:P

5.3 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.1%

JSON

Related for NVD:CVE-2014-2486

debiancve2 cve2 cvelist2 nvd1 prion2 ubuntucve2 openvas4 zdt1 korelogic1 securityvulns2 packetstorm2 canvas1 kaspersky1 nessus2 debian1 osv1 oracle1