CVSS 3.1 Score 6.5 of 10 (medium)


Published Apr 16, 2024
Updated: Apr 17, 2024


CVE-2024-21106 is a vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization, specifically affecting versions prior to 7.0.16. This vulnerability allows a low privileged attacker with logon access to compromise Oracle VM VirtualBox, which could have significant impacts on other products as well. Successful exploitation of this vulnerability can lead to unauthorized ability to cause a hang or frequently repeatable crash, resulting in a denial-of-service (DOS) situation for Oracle VM VirtualBox. The CVSS 3.1 Base Score for this vulnerability is 6.5, indicating high availability impacts. Remediation should involve updating to version 7.0.16 or later of Oracle VM VirtualBox to mitigate the risk posed by this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-21106 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options