Multiple vulnerabilities in Oracle Virtual Box

Описание

Multiple serious vulnerabilities were found in Virtual Box. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions and read local files.

Below is a complete list of vulnerabilities:

1. Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core) can be exploited by attacker and human interaction from a person other than the attacker localy to bypass security restrictions or cause denial of service;
2. Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core) can be exploited localy via unauthorized creation, deletion or modification access to critical data to cause denial of service;
3. Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core) can be exploited by attacker and human interaction from a person other than the attacker localy to cause denial of service and read local files;
4. Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core) can be exploited localy to cause partial denial of service.

Первичный источник обнаружения

• Oracle Critical Patch Update Advisory - July 2018
  

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2018-3086
  warning
• CVE-2018-3087
  warning
• CVE-2018-3088
  warning
• CVE-2018-3089
  warning
• CVE-2018-3090
  warning
• CVE-2018-3085
  warning
• CVE-2018-3055
  warning
• CVE-2018-3091
  warning
• CVE-2018-3005
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com