1449 matches found
CVE-2021-2248
CVE-2021-2248 affects Oracle Secure Global Desktop (Server component) with affected version 5.6. Descriptions across NVD/Red Hat/CVEs state an unauthenticated attacker with network access via multiple protocols can compromise Oracle Secure Global Desktop, potentially leading to takeover. The root...
CVE-2021-2250
CVE-2021-2250 affects Oracle VM VirtualBox Core (pre-6.1.20). The issue allows high-privilege attackers with logon to compromise VirtualBox, with potential takeover of the product and impact to connected products. The family of CVEs discussed (including CVE-2021-2250, 2145, 2264–2310, etc.) share...
CVE-2021-2248
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Server. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
CVE-2021-2250
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
CVE-2021-2248
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Server. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
CVE-2021-2250
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
CVE-2021-2221
CVE-2021-2221 affects Oracle Secure Global Desktop (Client) with vulnerable version 5.6. Multiple sources indicate an input-validation/remote code-execution style flaw in the Client component that can allow an unauthenticated attacker to execute arbitrary code over network protocols, potentially ...
CVE-2021-2221
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Client. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
CVE-2021-2177
CVE-2021-2177 affects Oracle Secure Global Desktop (Gateway) version 5.6. The vulnerability allows an unauthenticated attacker with network access via multiple protocols to take over Oracle Secure Global Desktop. The description in multiple sources confirms the impact as takeover; no root-cause o...
CVE-2021-2177
Vulnerability in the Oracle Secure Global Desktop product of Oracle Virtualization component: Gateway. The supported version that is affected is 5.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Secure Global...
CVE-2021-2145
CVE-2021-2145 affects Oracle VM VirtualBox Core prior to 6.1.20. The issue enables an attacker with logon to the host infrastructure to compromise VirtualBox, with potential takeover and impact to other products. The trusted sources in connected documents describe multiple CVEs in VirtualBox 6.1....
CVE-2021-2145
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2021-2145
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2021-2145
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
Denial Of Service (DoS)
virtualbox:sid is vulnerable to privilage escalation. Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the...
Vulnerabilities fixed in Oracle VirtualBox
Vulnerabilities have been fixed in Oracle Virtualization. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Circumvention of security measure. Remote code execution Administrator/Root privileges Access to sensitive...
Oracle VM VirtualBox (April 2021 CPU)
The version of Virtualbox installed on the remote host is prior to 6.1.20. It is, therefore, affected by multiple vulnerabilities as referenced in the April 2021 CPU advisory: - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that ...
Vulnerabilities fixed in Oracle Virtualization
Vulnerabilities have been fixed in Oracle Virtualization/Virtualbox. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data...
CVE-2021-2123
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
CVE-2021-2128
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...