Ubuntu.comUB:CVE-2024-21109CVE-2024-21109
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
5.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.0%
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization
(component: Core). Supported versions that are affected are Prior to
7.0.16. Difficult to exploit vulnerability allows unauthenticated attacker
with network access via HTTP to compromise Oracle VM VirtualBox. Successful
attacks of this vulnerability can result in unauthorized access to critical
data or complete access to all Oracle VM VirtualBox accessible data. CVSS
3.1 Base Score 5.9 (Confidentiality impacts). CVSS Vector:
(CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | virtualbox | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | virtualbox | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | virtualbox | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | virtualbox | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | virtualbox | < any | UNKNOWN |
Related
5.9 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
5.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.0%