Multiple vulnerabilities in Oracle VM VirtualBox
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 11 |
| CVE-ID | CVE-2023-21991 CVE-2023-21999 CVE-2023-21988 CVE-2023-22001 CVE-2023-22000 CVE-2023-21998 CVE-2023-21989 CVE-2023-22002 CVE-2022-42916 CVE-2023-21987 CVE-2023-21990 |
| CWE-ID | CWE-125 CWE-20 CWE-824 CWE-319 CWE-121 CWE-416 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Oracle VM VirtualBox Server applications / Virtualization software |
| Vendor | Oracle |
Security Bulletin
This security bulletin contains information about 11 vulnerabilities.
1) Out-of-bounds read
EUVDB-ID: #VU75313
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-21991
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition within the handling of VGA MMIO. A local privileged user can trigger an out-of-bounds read error and read contents of memory on the system.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper input validation
EUVDB-ID: #VU75312
Risk: Low
CVSSv4.0: 0.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-21999
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local authenticated user to read and manipulate data.
The vulnerability exists due to improper input validation within the Core component in Oracle VM VirtualBox. A local authenticated user can exploit this vulnerability to read and manipulate data.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Access of Uninitialized Pointer
EUVDB-ID: #VU75311
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-21988
CWE-ID:
CWE-824 - Access of Uninitialized Pointer
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to access to uninitialized memory within the handling of GPA requests. A local privileged user can gain access to sensitive information.
Install update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Improper input validation
EUVDB-ID: #VU75310
Risk: Low
CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-22001
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local privileged user to read and manipulate data.
The vulnerability exists due to improper input validation within the Core component in Oracle VM VirtualBox. A local privileged user can exploit this vulnerability to read and manipulate data.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Improper input validation
EUVDB-ID: #VU75309
Risk: Low
CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-22000
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local privileged user to read and manipulate data.
The vulnerability exists due to improper input validation within the Core component in Oracle VM VirtualBox. A local privileged user can exploit this vulnerability to read and manipulate data.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Improper input validation
EUVDB-ID: #VU75308
Risk: Low
CVSSv4.0: 1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-21998
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local privileged user to read and manipulate data.
The vulnerability exists due to improper input validation within the Core component in Oracle VM VirtualBox. A local privileged user can exploit this vulnerability to read and manipulate data.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Access of Uninitialized Pointer
EUVDB-ID: #VU75307
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-21989
CWE-ID:
CWE-824 - Access of Uninitialized Pointer
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to access to uninitialized memory within the OHCI USB controller. A local privileged user can gain unauthorized access to sensitive information.
Install update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Improper input validation
EUVDB-ID: #VU75306
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-22002
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local privileged user to gain access to sensitive information.
The vulnerability exists due to improper input validation within the Core component in Oracle VM VirtualBox. A local privileged user can exploit this vulnerability to gain access to sensitive information.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Cleartext transmission of sensitive information
EUVDB-ID: #VU68749
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-42916
CWE-ID:
CWE-319 - Cleartext Transmission of Sensitive Information
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to an error when parsing URL with IDN characters that get replaced to ASCII counterparts as part of the IDN conversion. A remote attacker can bypass curl's HSTS check and trick it into using unencrypted HTTP protocol.
Install update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Stack-based buffer overflow
EUVDB-ID: #VU75305
Risk: Low
CVSSv4.0: 2.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:U/U:Clear]
CVE-ID: CVE-2023-21987
CWE-ID:
CWE-121 - Stack-based buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error within the handling of TPM MMIO. A local privileged user can trigger a stack-based buffer overflow and execute arbitrary code in the context of the hypervisor.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Use-after-free
EUVDB-ID: #VU75304
Risk: Low
CVSSv4.0: 2.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:U/U:Clear]
CVE-ID: CVE-2023-21990
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the OHCI USB controller. A local privileged user can trigger a use-after-free error and execute arbitrary code the context of the hypervisor.
MitigationInstall update from vendor's website.
Vulnerable software versionsOracle VM VirtualBox: 6.1.0 - 7.0.6
CPE2.3- cpe:2.3:a:oracle:vm_virtualbox:6.1.43:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:7.0.6:*:*:*:*:*:*:*
https://www.oracle.com/security-alerts/cpuapr2023.html?151
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
