CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-2864 – Oracle VirtualBox vmsvga3dSetRenderState Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-2864
22 Jul 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in ta... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 8.2EPSS: 0%CPEs: 4EXPL: 0CVE-2019-2866 – Oracle VirtualBox WINED3DSIH_TEX Opcode Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-2866
22 Jul 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in take... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-2863 – Oracle VirtualBox cr_unpackData Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-2863
22 Jul 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.32 and prior to 6.0.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unaut... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 9.8EPSS: 97%CPEs: 18EXPL: 22CVE-2019-2725 – Oracle WebLogic Server, Injection
https://notcve.org/view.php?id=CVE-2019-2725
26 Apr 2019 — Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). • https://packetstorm.news/files/id/152756 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2722 – Oracle VirtualBox e1000 Integer Overflow Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-2722
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeov... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2019-2721 – VirtualBox 6.0.4 r128413 - COM RPC Interface Code Injection Host Privilege Escalation
https://notcve.org/view.php?id=CVE-2019-2721
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeov... • https://www.exploit-db.com/exploits/46747 •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2723 – Oracle VirtualBox e1000 Race Condition Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-2723
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeov... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2703
https://notcve.org/view.php?id=CVE-2019-2703
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeov... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2696
https://notcve.org/view.php?id=CVE-2019-2696
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeov... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2678
https://notcve.org/view.php?id=CVE-2019-2678
23 Apr 2019 — Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauth... • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html •