6952 matches found
CVE-2024-21116
CVE-2024-21116 concerns Oracle VM VirtualBox (Core) on Linux hosts, affected before 7.0.16. The vulnerability enables a local, low-privilege attacker with logon rights to compromise VirtualBox, potentially taking over the VMs or the host as stated in the CVSS 3.1 base score 7.8 (C/I/A: High). Con...
CVE-2024-21116
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21114
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21113
CVE-2024-21113 affects Oracle VM VirtualBox (Core) prior to 7.0.16. A local, low-privilege attacker with logon can compromise VirtualBox, with potential takeover and impact to related products. CVSS v3.1 base score 8.8 (HIGH). Remediation: apply patches to move to 7.0.16+ (vendor advisories, Mage...
CVE-2024-21113
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21114
CVE-2024-21114 affects Oracle VM VirtualBox (Core). Affected: Oracle VM VirtualBox up to version 7.0.15 (prior to 7.0.16). The vulnerability allows a low-privilege, locally authenticated attacker to compromise VirtualBox, with potential impact on other products (scope change) and can lead to take...
CVE-2024-21112
Oracle VM VirtualBox Core is affected (prior to 7.0.16). The CVE-2024-21112 issue allows a low-privilege, locally authenticated attacker to compromise VirtualBox, with potential scope change to impact other products and complete takeover. Public sources (NVD/NCSC/Mageia/NASL highlights) corrobora...
CVE-2024-21111
CVE-2024-21111 affects Oracle VM VirtualBox (Core) with affected versions prior to 7.0.16 on Windows hosts. The connected exploit DB entry documents a Privilege Escalation exploit for VirtualBox 7.0.16 on Windows x64, indicating local attacker access can lead to takeover of VirtualBox. Several ad...
CVE-2024-21109
CVE-2024-21109 affects Oracle VM VirtualBox (Core) with affected versions prior to 7.0.16. The vulnerability allows unauthenticated, network-accessible attacks via HTTP, potentially enabling unauthorized access to sensitive data or full data access on Oracle VM VirtualBox. Exploitation details ar...
CVE-2024-21110
CVE-2024-21110 affects Oracle VM VirtualBox core in Oracle Virtualization. Affected are supported versions prior to 7.0.16. The vulnerability allows a low-privilege, locally logged-on attacker (with required user interaction) to take over VirtualBox. CVSS 3.1 base score 7.3 (C/H, I/H, A/H). Mitig...
CVE-2024-21109
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle VM VirtualBox. Successful...
CVE-2024-21111
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21110
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21108
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21107
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21108
CVE-2024-21108 (Oracle VM VirtualBox Core) affects Oracle VM VirtualBox prior to 7.0.16. The vulnerability allows a low-privilege attacker who can log on to the infrastructure where VirtualBox runs to compromise the VirtualBox instance, potentially leading to unauthorized read access to a subset ...
CVE-2024-21107
CVE-2024-21107 affects the Oracle VM VirtualBox Core on Windows hosts, with affected versions prior to 7.0.16. The vulnerability enables a local, high-privilege attacker with logon to the infrastructure running VirtualBox to compromise the product, potentially taking over VirtualBox. The base CVS...
CVE-2024-21106
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 7.0.16. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...
CVE-2024-21106
Oracle VM VirtualBox is affected in the Core component for versions older than 7.0.16. The issue allows a locally authenticated, low-privilege attacker to cause a crash or hang (complete DoS) of the VirtualBox host, with potential scope changes impacting other products. The vulnerability is docum...
CVE-2024-21103
CVE-2024-21103 concerns Oracle VM VirtualBox (Core) on Linux hosts. Affected are versions prior to 7.0.16; vulnerability allows a local, low-privilege attacker with logon to the host to compromise VirtualBox, potentially leading to takeover. The CVSS v3.1 base score is 7.8 (High impact on confide...