CVE-2014-0407
Description
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0405.
Risk Information
Base Score
8.4
MODERATE
Vector
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.076
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update VM VirtualBox 4.3.2 to latest version | Windows |
| Vulnerabilities CVE-2013-5892,CVE-2014-0405,CVE-2014-0407 are affected in Oracle VM VirtualBox 3.5 | Windows |
| virtualbox security update(DSA-3384-1) virtualbox_4.1.42-dfsg-1+deb7u1_i386.deb | Linux |
| virtualbox security update(DSA-3384-1) virtualbox_4.1.42-dfsg-1+deb7u1_amd64.deb | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-342239 | Oracle VM VirtualBox (7.1.4) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234