NVD

Id
81476  
Name
CVE-2017-3316  
Description
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: GUI). Supported versions that are affected are VirtualBox prior to 5.0.32 and prior to 5.1.14. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise Oracle VM VirtualBox. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS v3.0 Base Score 8.4 (Confidentiality, Integrity and Availability impacts).  
Reject
 
CVSS Version
2  
CVSS Score
6  
Severity
Medium  
CVSS Base Score
6  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:P/I:P/A:P)  
Pub Date
2017-07-18  
Published
2017-01-27  
Modified Date
2017-06-30  
Seq
2017-3316  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
404267 81476 CVE-2017-3236 http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html  View
404268 81476 CVE-2017-3236 95552  View
404269 81476 CVE-2017-3236 http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html  View
404270 81476 CVE-2017-3236 95552  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
64744 JVNDB-2017-001130 Oracle Virtualization の Oracle VM VirtualBox における GUI に関する脆弱性 Oracle Virtualization の Oracle VM VirtualBox には、GUI に関する処理に不備があるため、機密性、完全性、および可用性に影響のある脆弱性が存在します。 CVE-2017-3316 CVE-2017-3316 81476 6 8.4 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-001130.html 2017-01-17 2017-02-01 View