1448 matches found
CVE-2023-21886
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Orac...
CVE-2023-21885
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2023-21884
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
Buffer overflow
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
Buffer overflow
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
Buffer overflow
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
Oracle VM VirtualBox Multiple Vulnerabilities (Jan 2023 CPU)
The version of VirtualBox installed on the remote host is prior to 6.1.42 or prior to 7.0.6. It is, therefore, affected by multiple vulnerabilities as referenced in the Jan 2023 CPU advisory: - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported...
CVE-2023-21898
CVE-2023-21898 affects Oracle VM VirtualBox (Core). Affected: VirtualBox versions prior to 6.1.42 and prior to 7.0.6. A low-privilege, local attacker with logon can exploit this to cause a hang or a frequent crash of Oracle VM VirtualBox (complete DOS) on Windows guests (noted for VirtualBox VMs ...
CVE-2023-21898
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2023-21889
CVE-2023-21889 affects Oracle VM VirtualBox (Core). Affected: VirtualBox versions prior to 6.1.42 and prior to 7.0.6. Exploitation requires local access (logon) to the infrastructure where VirtualBox runs. Impact: unauthorized read access to a subset of VirtualBox data. No details on root cause b...
CVE-2023-21889
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2023-21885
CVE-2023-21885 pertains to Oracle VM VirtualBox (Core) with affected releases before 6.1.42 and before 7.0.6. The issue allows a low-privilege user who can log on to the host to compromise VirtualBox, potentially enabling read access to a subset of data. Windows hosts only. Mitigation: upgrade to...
CVE-2023-21885
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2023-21884
CVE-2023-21884 affects Oracle VM VirtualBox (Core) where affected versions are prior to 6.1.42 and prior to 7.0.6. An attacker with local logon and high privileges can cause a hang or frequent crashes (DoS) of VirtualBox. Multiple connected advisories corroborate the same fixed versions: upgrade ...
Authentication Bypass
virtualbox is vulnerable to authentication bypass. The vulnerability exists in the Oracle VM VirtualBox product of Oracle Virtualization which allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...
Authentication Bypass
virtualbox is vulnerable to authentication bypass. The vulnerability exists in the Oracle VM VirtualBox product of Oracle Virtualization which allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...
Authentication Bypass
virtualbox is vulnerable to authentication bypass. The vulnerability exists in the Oracle VM VirtualBox product of Oracle Virtualization which allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...
Authentication Bypass
virtualbox is vulnerable to authentication bypass. The vulnerability exists in the Oracle VM VirtualBox product of Oracle Virtualization which allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...
Oracle VM VirtualBox < 6.1.38 (Oct 2022 CPU)
The version of VirtualBox installed on the remote host is prior to 6.1.38. It is, therefore, affected by multiple vulnerabilities as referenced in the Oct 2022 CPU advisory: - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are...
Vulnerabilities fixed in Oracle Virtualization
Vulnerabilities have been fixed in Oracle Virtualization. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution Administrator/Root rights Remote code...