Oracle

Vm Virtualbox

385 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2016-0678

  • EPSS 0.11%
  • Published 21.04.2016 10:59:40
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.18 allows local users to affect confidentiality, integrity, and availability via vectors related to Core.

5.9

CVE-2015-3197

  • EPSS 18.01%
  • Published 15.02.2016 02:59:01
  • Last modified 12.04.2025 10:46:40

ssl/s2_srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 tra...

6.2

CVE-2016-0602

  • EPSS 1.05%
  • Published 21.01.2016 03:02:30
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.14 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Windows Installer. NOTE: the p...

2.1

CVE-2016-0592

  • EPSS 0.09%
  • Published 21.01.2016 03:02:21
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.36 and before 5.0.14 allows local users to affect availability via unknown vectors related to Core.

4.3

CVE-2016-0495

  • EPSS 1%
  • Published 21.01.2016 03:00:43
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.36 and 5.0.14 allows remote attackers to affect availability via unknown vectors related to Core.

4.3

CVE-2015-3196

  • EPSS 6.31%
  • Published 06.12.2015 20:59:06
  • Last modified 12.04.2025 10:46:40

ssl/s3_clnt.c in OpenSSL 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1p, and 1.0.2 before 1.0.2d, when used for a multi-threaded client, writes the PSK identity hint to an incorrect data structure, which allows remote servers to cause a denial of service (...

5.3

CVE-2015-3195

  • EPSS 3.48%
  • Published 06.12.2015 20:59:05
  • Last modified 12.04.2025 10:46:40

The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to ob...

4.7

CVE-2015-8104

  • EPSS 0.35%
  • Published 16.11.2015 11:59:12
  • Last modified 23.04.2025 16:15:20

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c.

4.9

CVE-2015-5307

  • EPSS 0.17%
  • Published 16.11.2015 11:59:05
  • Last modified 12.04.2025 10:46:40

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #AC (aka Alignment Check) exceptions, related to svm.c and vmx.c.

5

CVE-2015-4896

  • EPSS 1.66%
  • Published 21.10.2015 23:59:56
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.0.34, 4.1.42, 4.2.34, 4.3.32, and 5.0.8, when a VM has the Remote Display feature (RDP) enabled, allows remote attackers to affect availabili...