CVE-2011-2305 : Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local users to affe

Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

Published 2011-07-21 00:55:02

Updated 2025-04-11 00:51:22

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2011-2305

Oracle » Vm Virtualbox » Version: 4.0
cpe:2.3:a:oracle:vm_virtualbox:4.0:*:*:*:*:*:*:*
Matching versions
Oracle » Vm Virtualbox » Version: 3.0
cpe:2.3:a:oracle:vm_virtualbox:3.0:*:*:*:*:*:*:*
Matching versions
Oracle » Vm Virtualbox » Version: 3.1
cpe:2.3:a:oracle:vm_virtualbox:3.1:*:*:*:*:*:*:*
Matching versions
Oracle » Vm Virtualbox » Version: 3.2
cpe:2.3:a:oracle:vm_virtualbox:3.2:*:*:*:*:*:*:*
Matching versions

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 38 %

Percentile, the proportion of vulnerabilities that are scored at or less

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.2	MEDIUM	AV:L/AC:H/Au:N/C:C/I:C/A:C	1.9	10.0	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

http://www.securitytracker.com/id?1025805

Oracle VM VirtualBox Lets Local Users Gain Elevated Privileges - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
http://www.us-cert.gov/cas/techalerts/TA11-201A.html

Oracle Updates for Multiple Vulnerabilities | CISA
Third Party Advisory;US Government Resource

CVEs referencing this url
http://security.gentoo.org/glsa/glsa-201204-01.xml

VirtualBox: Multiple vulnerabilities (GLSA 201204-01) — Gentoo security
Third Party Advisory

CVEs referencing this url
http://secunia.com/advisories/48755

Sign in
Permissions Required;Third Party Advisory

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Oracle Critical Patch Update - July 2011
Patch;Vendor Advisory

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12983

Repository / Oval Repository

Jump to