Multiple vulnerabilities in Oracle VirtualBox

Описание

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information, bypass security restrictions, cause denial of service.
2. Vulnerability in Web Services (Apache Axis) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions, cause denial of service.
3. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to cause denial of service.
4. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information.
5. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information, bypass security restrictions.
6. Vulnerability in Core (Mojarra) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions.
7. Vulnerability in Web Server (Apache HTTPD Server) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions.
8. Vulnerability in Core(OpenSSL) component of Oracle VM VirtualBox can be exploited to bypass security restrictions;

Первичный источник обнаружения

• Oracle Critical Patch Update Advisory - January 2020
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2019-1547
  warning
• CVE-2020-2674
  critical
• CVE-2020-2682
  critical
• CVE-2019-0227
  critical
• CVE-2020-2698
  critical
• CVE-2020-2701
  critical
• CVE-2020-2702
  critical
• CVE-2020-2726
  critical
• CVE-2020-2681
  high
• CVE-2020-2689
  high
• CVE-2020-2690
  high
• CVE-2020-2691
  high
• CVE-2020-2692
  high
• CVE-2020-2703
  high
• CVE-2020-2704
  high
• CVE-2020-2705
  high
• CVE-2020-2725
  high
• CVE-2020-2678
  high
• CVE-2019-17091
  high
• CVE-2020-2727
  high
• CVE-2020-2693
  high
• CVE-2019-10092
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com