KLA11179
Multiple vulnerabilities in Oracle VM VirtualBox
Дата обнаружения
|
18/01/2018 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information and gain privileges. Below is a complete list of vulnerabilities:
Technical details Vulnerability (3) affects only OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g on the processors that support the BMI1, BMI2 and ADX extensions like Intel Broadwell (5th generation) and later or AMD Ryzen. |
Пораженные продукты
|
Oracle VM VirtualBox 5.1.x earlier than 5.1.32 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
Oracle Critical Patch Update Advisory – January 2018 |
Оказываемое влияние
?
|
OSI
[?]
PE
[?]
|
Связанные продукты
|
Oracle VirtualBox |
CVE-IDS
|
CVE-2017-57154.7Warning
CVE-2018-26764.3Warning CVE-2017-37364.0Warning CVE-2018-26854.4Warning CVE-2018-26864.4Warning CVE-2018-26874.4Warning CVE-2018-26884.4Warning CVE-2018-26894.4Warning CVE-2018-26904.4Warning CVE-2018-26934.1Warning CVE-2018-26944.1Warning CVE-2018-26984.1Warning |
Эксплуатация
|
The following public exploits exists for this vulnerability: |