Multiple vulnerabilities in Oracle Virtual Box

Описание

Multiple vulnerabilities were found in Oracle Virtual Box. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions and cause denial of service.

Below is a complete list of vulnerabilities:

1. Multiple vulnerabilities in Core component of Oracle VM VirtualBox can be exploited locally to obtain sensitive information.
2. Multiple vulnerabilities in Core component of Oracle VM VirtualBox can be exploited locally to cause denial of service.
3. Multiple vulnerabilities in Core component of Oracle VM VirtualBox can be exploited locally to obtain sensitive information, bypass security restrictions and cause denial of service.
4. Vulnerability in Web Server (Apache HTTP Server) component of Oracle Secure Global Desktop (SGD) can be exploited remotely to cause denial of service.
5. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to cause denial of service.
6. Vulnerability in Application Server (Apache Tomcat) component of Oracle Secure Global Desktop (SGD) can be exploited remotely to bypass security restrictions.
7. Vulnerability in Core (OpenSSL) component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• Oracle Critical Patch Update Advisory - January 2019
  

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2019-2500
  warning
• CVE-2019-2524
  warning
• CVE-2019-2552
  warning
• CVE-2018-3309
  warning
• CVE-2019-2520
  warning
• CVE-2019-2521
  warning
• CVE-2019-2522
  warning
• CVE-2019-2523
  warning
• CVE-2019-2526
  warning
• CVE-2019-2548
  warning
• CVE-2019-2511
  critical
• CVE-2019-2508
  warning
• CVE-2019-2509
  warning
• CVE-2019-2527
  warning
• CVE-2019-2450
  warning
• CVE-2019-2451
  warning
• CVE-2019-2555
  warning
• CVE-2019-2554
  warning
• CVE-2019-2556
  warning
• CVE-2018-0734
  warning
• CVE-2019-2525
  warning
• CVE-2019-2446
  warning
• CVE-2019-2448
  warning
• CVE-2019-2501
  warning
• CVE-2019-2504
  warning
• CVE-2019-2505
  warning
• CVE-2019-2506
  warning
• CVE-2019-2553
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com