North Korean Threat Actors Utilize AI-Driven Cyber Espionage Tactics
April 23, 2024Multiple Apache Products Vulnerabilities
April 23, 2024North Korean Threat Actors Utilize AI-Driven Cyber Espionage Tactics
April 23, 2024Multiple Apache Products Vulnerabilities
April 23, 2024Severity
High
Analysis Summary
CVE-2024-21108 CVSS:3.3
An unspecified vulnerability in Oracle VM VirtualBox related to the Core component could allow a local authenticated attacker to cause low confidentiality impact.
CVE-2024-21116, CVE-2024-21113
An unspecified vulnerability in Oracle VM VirtualBox related to the Core component could allow a local authenticated attacker to cause high confidentiality impact, high integrity impact, and high availability impact.
CVE-2024-21103, CVE-2024-21114
An unspecified vulnerability in Oracle VM VirtualBox related to the Core component could allow a local authenticated attacker to cause high confidentiality impact, high integrity impact, and high availability impact.
CVE-2024-21115, CVE-2024-21110
An unspecified vulnerability in Oracle VM VirtualBox related to the Core component could allow a local authenticated attacker to cause high confidentiality impact, high integrity impact, and high availability impact.
CVE-2024-21111, CVE-2024-21112
An unspecified vulnerability in Oracle VM VirtualBox related to the Core component could allow a local authenticated attacker to cause high confidentiality impact, high integrity impact, and high availability impact.
Impact
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-21108
- CVE-2024-21116
- CVE-2024-21113
- CVE-2024-21103
- CVE-2024-21114
- CVE-2024-21115
- CVE-2024-21110
- CVE-2024-21111
- CVE-2024-21112
Affected Vendors
Affected Products
- Oracle VM VirtualBox 7.0.10
Remediation
Refer to Oracle Critical Patch Update Advisory for patch, upgrade or suggested workaround information.