CVE-2024-21273

CVSS 3.1 Score 6.0 of 10 (medium)

Details

Published Oct 15, 2024

Summary

CVE-2024-21273 is a vulnerability found in Oracle VM VirtualBox that affects versions prior to 7.0.22 and 7.1.2. This easily exploitable flaw allows an attacker with high privileges access to the environment where Oracle VM VirtualBox operates, potentially leading to unauthorized access to sensitive data, as the attacks may extend to other products within its scope. Organizations are advised to upgrade to the supported versions to mitigate this risk. The CVSS 3.1 base score for this vulnerability is 6.0, indicating a medium severity level with a significant impact on confidentiality. The attack can occur locally without user interaction but requires elevated privileges for execution.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share