5.6 Medium
AI Score
Confidence
Low
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
23.3%
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.26, 4.0.28, 4.1.36, and 4.2.28 allows local users to affect availability via unknown vectors related to Core, a different vulnerability than CVE-2015-0377.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 7.0 | |
opensuse | eq | 13.1 | |
opensuse | eq | 13.2 | |
vm_virtualbox | eq | 4.0.0 | |
vm_virtualbox | eq | 4.0.22 | |
vm_virtualbox | eq | 4.1.4 | |
vm_virtualbox | eq | 4.1.12 | |
vm_virtualbox | eq | 4.0.2 | |
vm_virtualbox | eq | 4.0.24 | |
vm_virtualbox | eq | 4.1.6 |
lists.opensuse.org/opensuse-updates/2015-02/msg00030.html
secunia.com/advisories/62694
www.debian.org/security/2015/dsa-3143
www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
www.securityfocus.com/bid/72194
exchange.xforce.ibmcloud.com/vulnerabilities/100182
security.gentoo.org/glsa/201612-27