CVE-2015-2594
published 2015-07-16CVE-2015-2594: Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.0.32, 4.1.40, 4.2.32, and 4.3.30 allows local…
medium6.6CVSS 3.1
AVLACMAuSCCICAC
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.0.32, 4.1.40, 4.2.32, and 4.3.30 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | virtualbox | < virtualbox 4.3.30-dfsg-1 (sid) | virtualbox 4.3.30-dfsg-1 (sid) |
| oracle | vm_virtualbox | >= 4.0.0 < 4.0.32 | 4.0.32 |
| oracle | vm_virtualbox | >= 4.1.0 < 4.1.40 | 4.1.40 |
| oracle | vm_virtualbox | >= 4.2.0 < 4.2.32 | 4.2.32 |
| oracle | vm_virtualbox | >= 4.3.0 < 4.3.30 | 4.3.30 |
| sun | virtualbox | >= 0 < 4.3.34-dfsg-1+deb8u1ubuntu1.14.04.1 | 4.3.34-dfsg-1+deb8u1ubuntu1.14.04.1 |
CVSS provenance
nvd6.6MEDIUMAV:L/AC:M/Au:S/C:C/I:C/A:C
osv6.6MEDIUM