Oracle VirtualBox Web Service Exposure of Resource to Wrong Sphere Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Oracle VirtualBox. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vboxwebsrv service. The issue results from the exposure of a resource to t...

(Pwn2Own) Oracle VirtualBox VirtIOCore Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

(Pwn2Own) Oracle VirtualBox DevVGA Out-Of-Bounds Write Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the DevVGA...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to escalate their privileges or execute arbitrary code.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to increase their privileges or execute arbitrary code by moving the log files NT AUTHORITY\SYSTEM to...

Updated kernel, kmod-xtables-addons, kmod-virtualbox packages fix security vulnerabilities

Upstream kernel version 6.6.28 fix bugs and vulnerabilities. The kmod-virtualbox and kmod-xtables-addons packages have been updated to work with this new kernel. dwarves is a new requirement to build the kernel. For information about the vulnerabilities see the links...

Mageia: Security Advisory (MGASA-2024-0141)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Vulnerabilities fixed in Oracle VirtualBox

Oracle has fixed vulnerabilities in VirtualBox. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Remote code execution Administrator/Root privileges Access to sensitive data For successf...

Unauthorized Access

virtualBox is vulnerable to Unauthorized Access. The vulnerability is due to inadequate access controls to the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls to Oracle VM VirtualBox product of Oracle Virtualization, allowing a high privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Denial Of Service (DoS)

virtualBox is vulnerable to Denial of Service DOS.The vulnerability is due to insufficient input validation in VM VirtualBox product of Oracle Virtualization , allowing a low privileged attacker with login access to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls to Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise installations of Oracle VM VirtualBox...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient security controls in Oracle VM VirtualBox affects Linux hosts and stems from a flaw in the Core component, allows a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls in Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualbox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient access controls in Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to insufficient access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Privilege Escalation

virtualBox is vulnerable to Privilege Escalation. The vulnerability is due to inadequate access controls in the Oracle VM VirtualBox product of Oracle Virtualization, allowing a low-privileged attacker with login credentials to compromise Oracle VM VirtualBox installations...

Oracle VirtualBox Security Update (apr2024) - Windows

Oracle VirtualBox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:vmvirtualbox";...