Oracle VM VirtualBox يصل إلى6.1.23 Core Local Privilege Escalation

التسلسل الزمني

المستخدم

130
019

مجال

vulnerability_cvss2_nvd_basescore1
source_cve_cna1
vulnerability_cvss2_nvd_ai1
vulnerability_cvss2_nvd_ii1
vulnerability_cvss2_nvd_ci1

Commit Conf

90%30
50%10
70%9

Approve Conf

90%30
80%10
70%9
IDملتزمالمستخدممجالتغييرملاحظاتتمت الموافقةالسببC
1146968625/07/2021VulD...cvss2_nvd_basescore4.6nist.gov25/07/2021تمت الموافقة
90
1146968525/07/2021VulD...cve_cnaOraclenvd.nist.gov25/07/2021تمت الموافقة
70
1146968425/07/2021VulD...cvss2_nvd_aiPnvd.nist.gov25/07/2021تمت الموافقة
70
1146968325/07/2021VulD...cvss2_nvd_iiPnvd.nist.gov25/07/2021تمت الموافقة
70
1146968225/07/2021VulD...cvss2_nvd_ciPnvd.nist.gov25/07/2021تمت الموافقة
70
1146968125/07/2021VulD...cvss2_nvd_auNnvd.nist.gov25/07/2021تمت الموافقة
70
1146968025/07/2021VulD...cvss2_nvd_acLnvd.nist.gov25/07/2021تمت الموافقة
70
1146967925/07/2021VulD...cvss2_nvd_avLnvd.nist.gov25/07/2021تمت الموافقة
70
1146967825/07/2021VulD...cve_nvd_summaryVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox as well as unauthorized update, insert or delete access to some of Oracle VM VirtualBox accessible data and unauthorized read access to a subset of Oracle VM VirtualBox accessible data. Note: This vulnerability applies to Solaris x86 and Linux systems only. CVSS 3.1 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:H).cve.mitre.org25/07/2021تمت الموافقة
70
1146967725/07/2021VulD...cve_assigned1607468400 (09/12/2020)cve.mitre.org25/07/2021تمت الموافقة
70
1145051121/07/2021VulD...price_0day$5k-$25ksee exploit price documentation21/07/2021تمت الموافقة
90
1145051021/07/2021VulD...cvss3_meta_tempscore7.0see CVSS documentation21/07/2021تمت الموافقة
90
1145050921/07/2021VulD...cvss3_meta_basescore7.3see CVSS documentation21/07/2021تمت الموافقة
90
1145050821/07/2021VulD...cvss3_vuldb_tempscore7.0see CVSS documentation21/07/2021تمت الموافقة
90
1145050721/07/2021VulD...cvss3_vuldb_basescore7.3see CVSS documentation21/07/2021تمت الموافقة
90
1145050621/07/2021VulD...cvss2_vuldb_tempscore4.8see CVSS documentation21/07/2021تمت الموافقة
90
1145050521/07/2021VulD...cvss2_vuldb_basescore5.5see CVSS documentation21/07/2021تمت الموافقة
90
1145050421/07/2021VulD...cvss3_vuldb_eXderived from historical data21/07/2021تمت الموافقة
80
1145050321/07/2021VulD...cvss2_vuldb_eNDderived from historical data21/07/2021تمت الموافقة
80
1145050221/07/2021VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector21/07/2021تمت الموافقة
80

29 بعض الادخالات لم يتم عرضها

Do you know our Splunk app?

Download it now for free!