CVE-2025-61759

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

Linux Distros Unpatched Vulnerability : CVE-2021-2321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily...

UBUNTU-CVE-2024-21110

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

PT-2023-4366 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Kernel, which is associated with insufficient access control. This vulnerability can be exploited by an attack...

SUSE CVE-2017-10408

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.30. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

SUSE CVE-2019-2873

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

VulnCheck KEV: CVE-2004-0210

A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to take complete control of the system...

CVE-2021-2285

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

UBUNTU-CVE-2020-2913

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

Microsoft Windows Connected User Experiences and Telemetry Service Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, U.S.A. Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system.Connected User Experiences and Telemetry Service is one of the components that can...

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2019-31064)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Kernel is one of the Windows system kernels. An information disclosure vulnerabili...

UBUNTU-CVE-2019-2723

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2018-5550

Versions of Epson AirPrint released prior to January 19, 2018 contain a reflective cross-site scripting XSS vulnerability, which can allow untrusted users on the network to hijack a session cookie or perform other reflected XSS attacks on a currently logged-on user...

CVE-2017-5257

In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or guesses the SNMP read/write RW community string can insert XSS strings in certain SNMP OIDs which will execute in the context of the currently-logged on user...

Microsoft Windows EMF Handling Remote Code Execution Vulnerability

Windows is a windowed operating system developed by Microsoft Corporation in the U.S. EMF is a Windows vector graphics file. Microsoft Windows EMF has a security vulnerability. Due to Windows failing to properly handle certain constructs of EMF graphics format files. The vulnerability allows an...

Apple QuickTime Text Track Descriptors Heap Buffer Overflow - Ver2 (CVE-2012-0664)

A heap buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to improper validation of parameters lengths. A remote attacker can exploit this vulnerability by enticing a victim to open a specially crafted QuickTime Text file with an affected version of...

Microsoft PowerPoint Insecure Library Loading (MS11-094; CVE-2011-3396)

A remote code execution vulnerability has been reported in Microsoft PowerPoint. The vulnerability is due to an error in the way Microsoft PowerPoint restricts the path used for loading external libraries. A remote attacker could exploit this vulnerability by enticing a user to open a legitimate...

Juniper Networks IVE ActiveX Control Buffer Overflow (CVE-2006-2086)

A buffer overflow vulnerability has been reported in Juniper Networks IVE. The vulnerability is due to a boundary error within an ActiveX control. A remote attacker may exploit this vulnerability by enticing an affected user to open a specially crafted web-page. Successful exploitation would allo...

Adobe Reader JPEG Marker Code Execution (APSB11-24; CVE-2011-2440)

A code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error while parsing corrupted PDF files. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file. Successful exploitation would allo...

Internet Explorer Window Open Race Condition (MS11-057; CVE-2011-1257)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue to cause a memory corruption in a way that will enable him to execute arbitrary code in the context of the logged-on user. Successful exploitation of this vulnerabili...