CVE-2024-21109

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Apr 16, 2024

Updated: Apr 17, 2024

Summary

CVE-2024-21109 is a vulnerability affecting Oracle VM VirtualBox versions prior to 7.0.16. This issue, located in the product's core component, can be exploited by unauthenticated attackers via HTTP. Successful attacks may grant an unauthorized user confidential data access or even complete control over all data accessible by Oracle VM VirtualBox. The CVSS Base Score is 5.9, with a focus on potential confidentiality impacts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle VM Virtualbox

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vbkqlE
https://www.cve.org/CVERecord?id=CVE-2024-21109
https://nvd.nist.gov/vuln/detail/CVE-2024-21109

Back to Vulnerability Database