CVE-2024-21112

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Apr 16, 2024

Updated: Apr 17, 2024

Summary

CVE-2024-21112 is a critical vulnerability affecting Oracle VM VirtualBox versions prior to 7.0.16. This issue, located in the product's core component, enables low-privileged attackers to compromise Oracle VM VirtualBox with logon access to the affected infrastructure. The scope of damage may extend beyond Oracle VM VirtualBox, leading to potential takeovers of additional products. The CVSS Base Score of this vulnerability is 8.8, indicating significant risk to Confidentiality, Integrity, and Availability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle VM Virtualbox

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vbkqku
https://www.cve.org/CVERecord?id=CVE-2024-21112
https://nvd.nist.gov/vuln/detail/CVE-2024-21112

Back to Vulnerability Database