Multiple vulnerabilities in Oracle VirtualBox

Описание

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information, bypass security restrictions, cause denial of service.
2. Vulnerability in Web Services (Apache Axis) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions, cause denial of service.
3. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to cause denial of service.
4. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information.
5. Vulnerability in Core component of Oracle VM VirtualBox can be exploited remotely to obtain sensitive information, bypass security restrictions.
6. Vulnerability in Core (Mojarra) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions.
7. Vulnerability in Web Server (Apache HTTPD Server) component of Oracle Secure Global Desktop can be exploited remotely to obtain sensitive information, bypass security restrictions.
8. Vulnerability in Core(OpenSSL) component of Oracle VM VirtualBox can be exploited to bypass security restrictions;

Первичный источник обнаружения

• Oracle Critical Patch Update Advisory - January 2020
  

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2019-1547
  warning
• CVE-2020-2674
  warning
• CVE-2020-2682
  warning
• CVE-2019-0227
  high
• CVE-2020-2698
  warning
• CVE-2020-2701
  warning
• CVE-2020-2702
  warning
• CVE-2020-2726
  warning
• CVE-2020-2681
  warning
• CVE-2020-2689
  warning
• CVE-2020-2690
  warning
• CVE-2020-2691
  warning
• CVE-2020-2692
  warning
• CVE-2020-2703
  warning
• CVE-2020-2704
  warning
• CVE-2020-2705
  warning
• CVE-2020-2725
  warning
• CVE-2020-2678
  warning
• CVE-2019-17091
  warning
• CVE-2020-2727
  warning
• CVE-2020-2693
  warning
• CVE-2019-10092
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com