CVE-2021-2266

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2021-2266

CVE-2021-2266 affects Oracle VM VirtualBox (Core) with impact of information disclosure. Affected products are VirtualBox released before version 6.1.20; exploitation could allow a high-privilege attacker with logon to the host infrastructure to access sensitive data or, in some entries, take ove...

CVE-2021-2264

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

CVE-2021-2264

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

CVE-2021-2266

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2021-2264

CVE-2021-2264 affects Oracle VM VirtualBox (Core) prior to 6.1.20. The vulnerability, with CVSS v3.1 base score 8.4 (AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N), can allow a low-privilege, locally authenticated attacker to compromise VirtualBox and potentially access or modify data. Public sources consi...

CVE-2021-2264

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise...

CVE-2021-2250

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2021-2250

CVE-2021-2250 affects Oracle VM VirtualBox Core (pre-6.1.20). The issue allows high-privilege attackers with logon to compromise VirtualBox, with potential takeover of the product and impact to connected products. The family of CVEs discussed (including CVE-2021-2250, 2145, 2264–2310, etc.) share...

CVE-2021-2250

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2021-2250

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

CVE-2021-2145

CVE-2021-2145 affects Oracle VM VirtualBox Core prior to 6.1.20. The issue enables an attacker with logon to the host infrastructure to compromise VirtualBox, with potential takeover and impact to other products. The trusted sources in connected documents describe multiple CVEs in VirtualBox 6.1....

CVE-2021-2145

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

CVE-2021-2145

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

CVE-2021-2145

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

Privilege Escalation

virtualbox is vulnerable to privilege escalation. It allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...

Information Disclosure

virtualbox is vulnerable to information disclosure. A local privileged user is able to gain access to confidential information due to improper input validation within the Core component...

Privilege Escalation

virtualbox is vulnerable to privilege escalation. An attacker is able to logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox...

Information Disclosure

virtualbox is vulnerable to information disclosure. The vulnerability exists due to a missing permission check in Jenkins Mercurial which allows an attacker with Overall/Read permission to obtain a list of names of configured Mercurial installations...

Oracle VirtualBox NAT Integer Underflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...