Multiple vulnerabilities in Oracle VirtualBox

Описание

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. Denial of service vulnerability in Core can be exploited to cause denial of service.
2. Code execution vulnerability in Core can be exploited to execute arbitrary code and obtain sensitive information and cause denial of service.
3. Denial of service vulnerability in OpenSSL can be exploited to cause denial of service.

Первичный источник обнаружения

• Oracle Critical Patch Update Advisory - July 2023
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2023-0464
  critical
• CVE-2023-22017
  high
• CVE-2023-22018
  critical
• CVE-2023-22016
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com