Multiple vulnerabilities in Oracle VirtualBox

Описание

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Information disclosure vulnerability in Core can be exploited to obtain sensitive information and cause denial of service.
2. Code execution vulnerability in Core can be exploited to execute arbitrary code and obtain sensitive information and cause denial of service.

Первичный источник обнаружения

• Oracle Virtualization Risk Matrix
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Oracle-VirtualBox

Список CVE

• CVE-2023-22100
  critical
• CVE-2023-22099
  critical
• CVE-2023-22098
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com