Oracle Vm Virtualbox vulnerabilities
408 known vulnerabilities affecting oracle/vm_virtualbox.
Total CVEs
408
CISA KEV
1
actively exploited
Public exploits
21
Exploited in wild
1
Severity breakdown
CRITICAL5HIGH190MEDIUM163LOW50
Vulnerabilities
Page 5 of 21
CVE-2022-39421HIGHCVSS 7.3fixed in 6.1.402022-10-18
CVE-2022-39421 [HIGH] CWE-284 CVE-2022-39421: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks require human
nvd
CVE-2022-39427HIGHCVSS 8.8fixed in 6.1.402022-10-18
CVE-2022-39427 [HIGH] CVE-2022-39427: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM
nvd
CVE-2022-39422HIGHCVSS 7.5fixed in 6.1.382022-10-18
CVE-2022-39422 [HIGH] CWE-269 CVE-2022-39422: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.38. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in
nvd
CVE-2022-39426HIGHCVSS 8.1fixed in 6.1.402022-10-18
CVE-2022-39426 [HIGH] CWE-306 CVE-2022-39426: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Or
nvd
CVE-2022-39424HIGHCVSS 8.1fixed in 6.1.402022-10-18
CVE-2022-39424 [HIGH] CWE-94 CVE-2022-39424: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Ora
nvd
CVE-2022-39423MEDIUMCVSS 6.0fixed in 6.1.382022-10-18
CVE-2022-39423 [MEDIUM] CVE-2022-39423: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.38. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2022-21627MEDIUMCVSS 4.4fixed in 6.1.402022-10-18
CVE-2022-21627 [MEDIUM] CVE-2022-21627: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerabil
nvd
CVE-2022-21621MEDIUMCVSS 6.0fixed in 6.1.402022-10-18
CVE-2022-21621 [MEDIUM] CVE-2022-21621: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Suppor
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2022-21571HIGHCVSS 8.2fixed in 6.1.362022-07-19
CVE-2022-21571 [HIGH] CVE-2022-21571: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.36. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle V
nvd
CVE-2022-21554MEDIUMCVSS 4.4fixed in 6.1.362022-07-19
CVE-2022-21554 [MEDIUM] CVE-2022-21554: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.36. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerabi
nvd
CVE-2022-21491HIGHCVSS 7.8fixed in 6.1.342022-04-19
CVE-2022-21491 [HIGH] CVE-2022-21491: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerabilit
nvd
CVE-2022-21471MEDIUMCVSS 6.5fixed in 6.1.342022-04-19
CVE-2022-21471 [MEDIUM] CVE-2022-21471: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2022-21465MEDIUMCVSS 6.7≥ 6.1.0, < 6.1.342022-04-19
CVE-2022-21465 [MEDIUM] CVE-2022-21465: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2022-21487LOWCVSS 3.8fixed in 6.1.342022-04-19
CVE-2022-21487 [LOW] CVE-2022-21487: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM
nvd
CVE-2022-21488LOWCVSS 3.8fixed in 6.1.342022-04-19
CVE-2022-21488 [LOW] CVE-2022-21488: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.34. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM
nvd
CVE-2022-21394MEDIUMCVSS 6.5fixed in 6.1.322022-01-19
CVE-2022-21394 [MEDIUM] CVE-2022-21394: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.32. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2022-21295LOWCVSS 3.8fixed in 6.1.322022-01-19
CVE-2022-21295 [LOW] CVE-2022-21295: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.32. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM
nvd
CVE-2021-35538HIGHCVSS 7.8fixed in 6.1.282021-10-20
CVE-2021-35538 [HIGH] CVE-2021-35538: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.28. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerabilit
nvd
CVE-2021-35545MEDIUMCVSS 6.7fixed in 6.1.282021-10-20
CVE-2021-35545 [MEDIUM] CVE-2021-35545: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.28. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle
nvd
CVE-2021-35540MEDIUMCVSS 5.5fixed in 6.1.282021-10-20
CVE-2021-35540 [MEDIUM] CVE-2021-35540: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The su
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.28. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerabil
nvd