How severe is CVE-2024-21141?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.2 out of 10.

What type of vulnerability is CVE-2024-21141?

This is classified as CWE-269, which is a common weakness in software security.

CVE-2024-21141 - HIGH Severity | CVSS 8.2

Vulnerability Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 7.0.20. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Related Vulnerabilities

CVE-2018-3682

HIGH

CVSS:8.2(High)

BMC Firmware in Intel server boards, compute modules, and systems potentially allow an attacker with administrative privileges to make unauthorized read\writes to the SMBUS.

CWE-2692018

CVE-2019-17202

HIGH

CVSS:8.2(High)

FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. If a user does not have direct access ...

CWE-2692019

CVE-2019-3617

HIGH

CVSS:8.2(High)

Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS prior to 4.6 allows local users to gain root privileges via incorrect protection of temporary files.

CWE-2692019

CVE-2020-35517

HIGH

CVSS:8.2(High)

A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared dir...

CWE-2692020

CVE-2021-31937

HIGH

CVSS:8.2(High)

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CWE-2692021

CVE-2022-29179

HIGH

CVSS:8.2(High)

Cilium is open source software for providing and securing network connectivity and loadbalancing between application workloads. Prior to versions 1.9.16, 1.10.11, and 1.11.15, if an attacker is able t...

CWE-2692022