CVE-2023-22016

MEDIUM Year: 2023
CVSS v3 Score
4.2
Medium
Weakness Type
NVD-CWE-Other
View all →

Vulnerability Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.46 and Prior to 7.0.10. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 4.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H).

Related Vulnerabilities

CVE-2017-0066

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-0135

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-0140

MEDIUM
CVSS:4.2(Medium)

Microsoft Edge allows remote attackers to bypass the Same Origin Policy for HTML elements in other browser windows, aka "Microsoft Edge Security Feature Bypass Vulnerability." This vulnerability is di...

NVD-CWE-Other2017

CVE-2017-13675

MEDIUM
CVSS:4.2(Medium)

A denial of service (DoS) attack in Symantec Endpoint Encryption before SEE 11.1.3HF2 allows remote attackers to make a particular machine or network resource unavailable to its intended users by temp...

NVD-CWE-Other2017

CVE-2017-13679

MEDIUM
CVSS:4.2(Medium)

A denial of service (DoS) attack in Symantec Encryption Desktop before SED 10.4.1 MP2HF1 allows remote attackers to make a particular machine or network resource unavailable to its intended users by t...

NVD-CWE-Other2017

CVE-2017-18808

MEDIUM
CVSS:4.2(Medium)

NETGEAR ReadyNAS OS 6 devices running ReadyNAS OS versions prior to 6.8.0 are affected by incorrect configuration of security settings.

NVD-CWE-Other2017