openSUSE 15 Security Update : virtualbox (openSUSE-SU-2023:0166-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0166-1 advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to...

OPENSUSE-SU-2023:0166-1 Security update for virtualbox

This update for virtualbox fixes the following issues: - Fix Vagrant/virtualbox startup problems boo1209727 - VirtualBox 7.0.8 released April 18 2023 This is a maintenance release. The following items were fixed and/or added: - VMM: Introduced general improvements in nested visualization area -...

Security update for virtualbox (important)

openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2023:0166-1 Rating: important References: 1207468 1208941 1209529 1209727 1210616 1211941 Cross-References: CVE-2023-21987 CVE-2023-21988 CVE-2023-21989 CVE-2023-21990 CVE-2023-21991 CVE-2023-21998 CVE-2023-2199...

Mageia: Security Advisory (MGASA-2023-0201)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle VM VirtualBox virtualization software relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to execute arbitrary code.

The vulnerability of the Core component of the Oracle VM VirtualBox software relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Mageia: Security Advisory (MGASA-2023-0160)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated virtualbox packages fix security vulnerabilities

This update provides the upstream 7.0.8 maintenance release that fixes at least the following security vulnerabilities: Vulnerability in the Oracle VM VirtualBox prior to 7.0.8. A difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM...

MGASA-2023-0160 Updated virtualbox packages fix security vulnerabilities

This update provides the upstream 7.0.8 maintenance release that fixes at least the following security vulnerabilities: Vulnerability in the Oracle VM VirtualBox prior to 7.0.8. A difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM...

Information Disclosure

virtualbox is vulnerable to Information Disclosure. A high priviledged attacker with logon capabilities to the infrastructure can gain unauthorized access to critical data in the virtualbox...

Information Disclosure

virtualbox is vulnerable to Information Disclosure. A high priviledged attacker with logon capabilities to the infrastructure,can comprimize virtualbox leading to information disclosure...

Information Disclosure

virtualbox is vulnerable to Information Disclosure. A high priviledged attacker with logon capabilities to the infrastructure,can comprimize virtualbox leading to information disclosure...

Privilege Escalation

virtualbox is vulnerable to Privilege Escalation. The vulnerability allows a high privileged attacker with logon to the infrastructure to compromise the application and acquire sensitive information or elevate privileges...

Privilege Escalation

virtualbox is vulnerable to Privilege Escalation. The vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in unauthorized update, insert or delete...

Information Disclosure

virtualbox is vulnerable to Information Disclosure. The vulnerability allows a high privileged attacker with logon to the infrastructure to compromise the application, which leads to unauthorized read access, resulting in disclosure of sensitive information...

Remote Code Execution (RCE)

virtualbox is vulnerable to Remote Code Execution RCE. The vulnerability allows a high privileged attacker with logon to the infrastructure to compromise the application. Successful attacks of this vulnerability can result in takeover of the account...

Unauthorized Access

virtualbox is vulnerable to unauthorized access. The vulnerability allows low privilege attackers with logon to the infrastructure to execute a comprimise resulting unauthorized read access to a subset of virtualbox accessible data...

Unauthorized Access

virtualbox is vulnerable to Unauthorized Access. The vulnerability allows low privilege attackers with logon to the infrastructure to execute a comprimise resulting unauthorized read access to a subset of virtualbox accessible data...

Unauthorized Access

virtualbox is vulnerable to unauthorized access. The vulnerability allows low privilege attackers with logon to the infrastructure to execute a comprimise resulting in the takeover of virtualbox...

(Pwn2Own) Oracle VirtualBox TPM MMIO Handling Stack-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handlin...