Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.42 and prior to 7.0.6. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
Metrics
Affected Vendors & Products
References
History
Tue, 17 Sep 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-94 |
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2023-01-17T23:35:24.462Z
Updated: 2024-09-17T13:40:14.531Z
Reserved: 2022-12-17T19:26:00.705Z
Link: CVE-2023-21886
Vulnrichment
Updated: 2024-08-02T09:51:51.362Z
NVD
Status : Modified
Published: 2023-01-18T00:15:16.487
Modified: 2024-11-21T07:43:50.813
Link: CVE-2023-21886
Redhat
No data.