How severe is CVE-2017-10187?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.6 out of 10.

What type of vulnerability is CVE-2017-10187?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-10187

MEDIUM Year: 2017

CVSS v3 Score

4.6

Medium

CVSS v2 Score

3.6

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.0 Base Score 4.6 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:L).

CVE-2015-7566

MEDIUM

CVSS:4.6(Medium)

The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash...

NVD-CWE-Other2015

CVE-2015-8324

MEDIUM

CVSS:4.6(Medium)

The ext4 implementation in the Linux kernel before 2.6.34 does not properly track the initialization of certain data structures, which allows physically proximate attackers to cause a denial of servic...

NVD-CWE-Other2015

CVE-2016-1851

MEDIUM

CVSS:4.6(Medium)

The Screen Lock feature in Apple OS X before 10.11.5 mishandles password profiles, which allows physically proximate attackers to reset expired passwords in the lock-screen state via unspecified vecto...

NVD-CWE-Other2016

CVE-2016-2184

MEDIUM

CVSS:4.6(Medium)

The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL point...

NVD-CWE-Other2016

CVE-2016-2185

MEDIUM

CVSS:4.6(Medium)

The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and sys...

NVD-CWE-Other2016

CVE-2016-2186

MEDIUM

CVSS:4.6(Medium)

The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system ...

NVD-CWE-Other2016

CVE-2017-10187

Vulnerability Description

Related Vulnerabilities

CVE-2015-7566

CVE-2015-8324

CVE-2016-1851

CVE-2016-2184

CVE-2016-2185

CVE-2016-2186