6965 matches found
CVE-2017-10239
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10204
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10210
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10204
CVE-2017-10204 affects Oracle VM VirtualBox (Core subcomponent) and relates to VirtualBox process hardening. The connected material documents that attackers could bypass hardening checks to load unverified DLLs into the VirtualBox process via COM hijacking or DLL loading behavior, enabling arbitr...
CVE-2017-10238
CVE-2017-10238 affects Oracle VM VirtualBox (Core) and is exploitable locally on affected hosts. The vulnerability is present in Oracle VM VirtualBox versions prior to 5.1.24. Reported impacts include a hang or frequent crashes (DOS) and unauthorized read/update/delete of data in VirtualBox-acces...
CVE-2017-10239
CVE-2017-10239 affects Oracle VM VirtualBox Core, with vulnerable versions prior to 5.1.24. It is a local , high-privilege issue that can lead to a hang/DoS and unauthorized read/write access to VirtualBox data. CVSSv3 base score 7.3 (HIGH). Remediation: upgrade to at least 5.1.24; Mageia lists V...
CVE-2017-10242
Oracle VM VirtualBox is affected in core component versions before 5.1.24. A local, high-privilege attacker with logon to the infrastructure where VirtualBox runs can cause a hang or frequent crash (DOS) and may modify or read some VirtualBox data. Remediation guidance in the linked sources indic...
CVE-2017-10210
CVE-2017-10210 affects Oracle VM VirtualBox (Core) via the VMSVGA path. A concrete root cause described in connected material is an integer overflow in SVGA3D_CMD surface handling (vmsvga3dSurfaceDefine) that can cause memory corruption and a subsequent crash or crash-driven state. The adverse ef...
CVE-2017-10235
CVE-2017-10235 affects Oracle VM VirtualBox Core prior to 5.1.24. An attacker with local access could trigger a buffer overflow in the host’s DevE1000 emulation (e1kFallbackAddToFrame/e1kFallbackAddSegment) via loopback/TSE/GSO scenarios, potentially leading to DoS and, with crafted descriptors, ...
CVE-2017-10209
CVE-2017-10209 affects Oracle VM VirtualBox (Core) prior to 5.1.24. A local, low-privilege attacker with logon can read a subset of VirtualBox data and cause partial denial of service. Remediation is to apply fixes in newer VirtualBox releases; Mageia advisory MGASA-2017-0250 notes VirtualBox mai...
CVE-2017-10209
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10235
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10236
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10233
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10239
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10241
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10237
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10129
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10187
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
CVE-2017-10242
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...