Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6985 matches found

BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.4 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

7.8CVSS7.3AI score0.00586EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.3 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

7.5CVSS7.3AI score0.00567EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.2 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

8.2CVSS7.3AI score0.00576EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.3 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain control over the application.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to gain full control over the application...

7.5CVSS7.3AI score0.00562EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.2 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain access to modify, add, or delete data.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to lack of access control. Exploiting this vulnerability can allow an attacker to modify, add, or delete data...

6.5CVSS6.8AI score0.00368EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTECadded 2020/05/15 12:0 a.m.4 views

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to trigger a service failure.

The vulnerability of the Core component of the Oracle VM VirtualBox software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause service interruptions...

4.3CVSS6.6AI score0.00916EPSS
Exploits0References3Affected Software1
Hacker One
Hacker Oneadded 2020/05/02 2:21 p.m.12 views

Node.js third-party modules: [vboxmanage.js] Command Injection via insecure command concatenation

I would like to report a Command Injection issue in the vboxmanage.js module. It allows to execute arbitrary commands on the victim's PC. Module module name: vboxmanage.js version: 1.0.6 npm page: https://www.npmjs.com/package/vboxmanage.js Module Description A wrapper for VirtualBox CLI with...

0.4AI score
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2020/04/30 12:0 a.m.39 views

(Pwn2Own) Oracle VirtualBox E1000 IP Checksum Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within...

5.5CVSS2.3AI score0.00575EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2020/04/30 12:0 a.m.43 views

(Pwn2Own) Oracle VirtualBox OHCI Uninitialized Variable Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS4.4AI score0.00697EPSS
Exploits0References1
CNVD
CNVDadded 2020/04/30 12:0 a.m.2 views

Unspecified Vulnerability in Oracle Virtualization VM VirtualBox (CNVD-2020-51464 )

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation. The product is used to unify the management of the entire hardware and software system from applications to disks, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the virtual...

7.5CVSS8.5AI score0.00697EPSS
Exploits0References1
NVD
NVDadded 2020/04/29 3:15 p.m.16 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.5AI score0.00697EPSS
Exploits0References3
OSV
OSVadded 2020/04/29 3:15 p.m.2 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.1AI score0.00697EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2020/04/29 3:15 p.m.18 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.1AI score0.00697EPSS
Exploits0References3
Prion
Prionadded 2020/04/29 3:15 p.m.16 views

Design/Logic Flaw

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

4.4CVSS7.3AI score0.00697EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2020/04/29 3:15 p.m.1 views

UBUNTU-CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.3AI score0.00697EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2020/04/29 2:40 p.m.9 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS6.5AI score0.00697EPSS
Exploits0References3
Cvelist
Cvelistadded 2020/04/29 2:40 p.m.25 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.9AI score0.00697EPSS
Exploits0References3
CVE
CVEadded 2020/04/29 2:40 p.m.77 views

CVE-2020-2575

CVE-2020-2575 affects Oracle VM VirtualBox (Core). Affected versions are before 5.2.40, before 6.0.20, and before 6.1.6. The vulnerability is exploitable by a high-privilege attacker who has local logon to the environment where VirtualBox runs, potentially leading to takeover of Oracle VM Virtual...

7.5CVSS7.7AI score0.00697EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2020/04/29 2:40 p.m.18 views

CVE-2020-2575

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracl...

7.5CVSS7.6AI score0.00697EPSS
Exploits0
OSV
OSVadded 2020/04/24 5:3 p.m.11 views

MGASA-2020-0180 Updated virtualbox packages fix security vulnerabilities

This update provides the upstream 6.0.20 adding support for kernel 5.6 series and fixes the following security vulnerabilities: Oracle VM VirtualBox before 6.0.20 has an easily exploitable vulnerability that allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualB...

8.8CVSS7.4AI score0.0262EPSS
Exploits0References4
Rows per page
Query Builder