CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2021/10/19 12:0 a.m.•3 views

Oracle Virtualization和Oracle VM VirtualBox 安全漏洞

Oracle VM VirtualBox is a virtual machine management software from Oracle. An unspecified vulnerability in the Core component of Oracle VM VirtualBox versions prior to 6.1.28 can be exploited by an attacker to compromise Oracle VM VirtualBox by logging on to the Oracle VM VirtualBox execution...

6.7CVSS5.8AI score0.0039EPSS

Exploits0References5

Tenable Nessus•added 2021/10/10 12:0 a.m.•38 views

openSUSE 15 Security Update : virtualbox (openSUSE-SU-2021:0977-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0977-1 advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Pri...

8.4CVSS6.8AI score0.0331EPSS

Exploits1References45

Tenable Nessus•added 2021/07/22 12:0 a.m.•47 views

Oracle VM VirtualBox (July 2021 CPU)

The version of Virtualbox installed on the remote host is prior to 6.1.24. It is, therefore, affected by multiple vulnerabilities as referenced in the July 2021 CPU advisory: - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that i...

8.2CVSS6.9AI score0.00731EPSS

Exploits0References6

NVD•added 2021/07/21 3:16 p.m.•11 views

CVE-2021-2447

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Server. The supported version that is affected is 5.6. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise Oracle Secure Global Deskto...

9.9CVSS0.01095EPSS

NVD•added 2021/07/21 3:16 p.m.•12 views

CVE-2021-2443

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

7.3CVSS0.0036EPSS

UbuntuCve•added 2021/07/21 3:16 p.m.•24 views

CVE-2021-2443

7.3CVSS6.7AI score0.0036EPSS

Prion•added 2021/07/21 3:16 p.m.•23 views

Buffer overflow

2.1CVSS6.2AI score0.00395EPSS

Prion•added 2021/07/21 3:16 p.m.•23 views

Buffer overflow

4.6CVSS7.1AI score0.0036EPSS

Prion•added 2021/07/21 3:16 p.m.•12 views

Design/Logic Flaw

Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Client. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...

6.8CVSS9AI score0.0158EPSS

Exploits0References1Affected Software1

UbuntuCve•added 2021/07/21 3:15 p.m.•28 views

CVE-2021-2409

8.2CVSS6.8AI score0.00731EPSS

CVE•added 2021/07/20 10:45 p.m.•172 views

CVE-2021-2454

CVE-2021-2454 affects Oracle VM VirtualBox (Core) with versions prior to 6.1.24. The vulnerability enables a low-privileged, local attacker with logon to the host to take over Oracle VM VirtualBox. Impact is described as takeover of VirtualBox, with high severity (CVSS v3.1 base 7.0). Affected pr...

7CVSS7.1AI score0.00374EPSS

Cvelist•added 2021/07/20 10:45 p.m.•20 views

CVE-2021-2454

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.24. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromi...

7CVSS7.3AI score0.00374EPSS

Debian CVE•added 2021/07/20 10:45 p.m.•20 views

CVE-2021-2454

7CVSS6.8AI score0.00374EPSS

Exploits0

Vulnrichment•added 2021/07/20 10:44 p.m.•14 views

CVE-2021-2447

9.9CVSS7.3AI score0.01095EPSS

CVE•added 2021/07/20 10:44 p.m.•43 views

CVE-2021-2447

Summary : CVE-2021-2447 affects Oracle Secure Global Desktop (Server component) on version 5.6. The vulnerability allows a low-privilege, network-based attacker to compromise the product via multiple protocols, potentially leading to takeover of Oracle Secure Global Desktop. This is consistent wi...

9.9CVSS9AI score0.01095EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/07/20 10:44 p.m.•22 views

CVE-2021-2447

9.9CVSS9.2AI score0.01095EPSS

CVE•added 2021/07/20 10:44 p.m.•54 views

CVE-2021-2446

CVE-2021-2446 affects Oracle Secure Global Desktop, Client component, version 5.6. The vulnerability allows a network-accessible, unauthenticated attacker to compromise the product, with attacks requiring user interaction and potentially leading to takeover of Oracle Secure Global Desktop and imp...

9.6CVSS9AI score0.0158EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/07/20 10:44 p.m.•16 views

CVE-2021-2446

9.6CVSS9.2AI score0.0158EPSS

Vulnrichment•added 2021/07/20 10:44 p.m.•12 views

CVE-2021-2443

7.3CVSS6.6AI score0.0036EPSS