Description
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.26, 4.0.28, 4.1.36, and 4.2.28 allows local users to affect availability via unknown vectors related to Core, a different vulnerability than CVE-2015-0418.
References (8)
Core 8
Core References
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201612-27
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/62694
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Various Sources x_refsource_misc
http://www.c7zero.info/stuff/csw2017_ExploringYourSystemDeeper_updated.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72219
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3143
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/100176
Scores
EPSS
0.0010
EPSS Percentile
28.2%
Details
Status
published
Products (50)
debian/debian_linux
7.0
opensuse/opensuse
13.1
opensuse/opensuse
13.2
oracle/vm_virtualbox
3.2.0
oracle/vm_virtualbox
3.2.2
oracle/vm_virtualbox
3.2.4
oracle/vm_virtualbox
3.2.6
oracle/vm_virtualbox
3.2.8
oracle/vm_virtualbox
3.2.10
oracle/vm_virtualbox
3.2.12
... and 40 more
Published
Jan 21, 2015
Tracked Since
Feb 18, 2026