Debian Virtualbox vulnerabilities

396 known vulnerabilities affecting debian/virtualbox.

Total CVEs

396

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL3HIGH191MEDIUM149LOW53

Vulnerabilities

Page 8 of 20

CVE-2021-2130MEDIUMCVSS 4.4fixed in virtualbox 6.1.18-dfsg-1 (sid)2021

CVE-2021-2130 [MEDIUM] CVE-2021-2130: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability c

debian

CVE-2021-35540MEDIUMCVSS 5.5fixed in virtualbox 6.1.28-dfsg-1 (sid)2021

CVE-2021-35540 [MEDIUM] CVE-2021-35540: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.28. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability

debian

CVE-2021-25319LOWCVSS 7.82021

CVE-2021-25319 [HIGH] CVE-2021-25319: virtualbox - A Incorrect Default Permissions vulnerability in the packaging of virtualbox of ... A Incorrect Default Permissions vulnerability in the packaging of virtualbox of openSUSE Factory allows local attackers in the vboxusers groupu to escalate to root. This issue affects: openSUSE Factory virtualbox version 6.1.20-1.1 and prior versions. Scope: local sid: resolved

debian

CVE-2021-2123LOWCVSS 3.2fixed in virtualbox 6.1.18-dfsg-1 (sid)2021

CVE-2021-2123 [LOW] CVE-2021-2123: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM Virtu

debian

CVE-2021-35538LOWCVSS 7.82021

CVE-2021-35538 [HIGH] CVE-2021-35538: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.28. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability ca

debian

CVE-2020-2674HIGHCVSS 8.2fixed in virtualbox 6.1.2-dfsg-1 (sid)2020

CVE-2020-2674 [HIGH] CVE-2020-2674: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the

debian

CVE-2020-14699HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14699 [HIGH] CVE-2020-14699: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

CVE-2020-2914HIGHCVSS 7.0fixed in virtualbox 6.1.6-dfsg-1 (sid)2020

CVE-2020-2914 [HIGH] CVE-2020-2914: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of thi

debian

CVE-2020-2701HIGHCVSS 7.5fixed in virtualbox 6.1.2-dfsg-1 (sid)2020

CVE-2020-2701 [HIGH] CVE-2020-2701: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While t

debian

CVE-2020-2902HIGHCVSS 8.8fixed in virtualbox 6.1.6-dfsg-1 (sid)2020

CVE-2020-2902 [HIGH] CVE-2020-2902: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the

debian

CVE-2020-14647HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14647 [HIGH] CVE-2020-14647: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

CVE-2020-2726HIGHCVSS 7.5fixed in virtualbox 6.1.2-dfsg-1 (sid)2020

CVE-2020-2726 [HIGH] CVE-2020-2726: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While t

debian

CVE-2020-2907HIGHCVSS 7.5fixed in virtualbox 6.1.6-dfsg-1 (sid)2020

CVE-2020-2907 [HIGH] CVE-2020-2907: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While t

debian

CVE-2020-14713HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14713 [HIGH] CVE-2020-14713: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

CVE-2020-14649HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14649 [HIGH] CVE-2020-14649: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

CVE-2020-14628HIGHCVSS 8.2fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14628 [HIGH] CVE-2020-14628: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While

debian

CVE-2020-2575HIGHCVSS 7.5fixed in virtualbox 6.1.6-dfsg-1 (sid)2020

CVE-2020-2575 [HIGH] CVE-2020-2575: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While t

debian

CVE-2020-14677HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14677 [HIGH] CVE-2020-14677: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

CVE-2020-2742HIGHCVSS 8.2fixed in virtualbox 6.1.2-dfsg-1 (sid)2020

CVE-2020-2742 [HIGH] CVE-2020-2742: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.36, prior to 6.0.16 and prior to 6.1.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the

debian

CVE-2020-14674HIGHCVSS 7.5fixed in virtualbox 6.1.12-dfsg-1 (sid)2020

CVE-2020-14674 [HIGH] CVE-2020-14674: virtualbox - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp... Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Whil

debian

← Previous8 / 20Next →