ID CVE-2015-4856
Summary Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.0.30, 4.1.38, 4.2.30, 4.3.26, and 5.0.0 allows local users to affect availability via unknown vectors related to Core.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:vm_virtualbox:4.0.29:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:vm_virtualbox:4.0.29:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:vm_virtualbox:4.1.37:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:vm_virtualbox:4.1.37:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:vm_virtualbox:4.2.29:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:vm_virtualbox:4.2.29:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:vm_virtualbox:4.3.25:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:vm_virtualbox:4.3.25:*:*:*:*:*:*:*
CVSS
Base: 4.9 (as of 24-12-2016 - 02:59)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:C
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
sectrack 1033880
Last major update 24-12-2016 - 02:59
Published 21-10-2015 - 23:59
Last modified 24-12-2016 - 02:59
Back to Top