Vulnerability Details : CVE-2014-6540
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.1.34, before 4.2.26, and before 4.3.14 allows local users to affect availability via vectors related to Graphics driver (WDDM) for Windows guests.
Exploit prediction scoring system (EPSS) score for CVE-2014-6540
Probability of exploitation activity in the next 30 days: 0.08%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 31 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-6540
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
1.9
|
LOW | AV:L/AC:M/Au:N/C:N/I:N/A:P |
3.4
|
2.9
|
NIST |
References for CVE-2014-6540
-
http://www.securityfocus.com/bid/70493
Oracle VM VirtualBox CVE-2014-6540 Local Security Vulnerability
-
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Oracle Critical Patch Update - October 2014Patch;Vendor Advisory
-
http://www.securitytracker.com/id/1031034
Oracle Virtualization Multiple Flaws Let Local and Remote Users Partially Deny Service - SecurityTracker
Products affected by CVE-2014-6540
- cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.24:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.22:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.12:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.14:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.16:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.18:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.20:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.18:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.26:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.20:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.28:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.2.22:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.1.30:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:4.3.10:*:*:*:*:*:*:*