Vulnerability Details : CVE-2011-3571
Unspecified vulnerability in the Virtual Desktop Infrastructure (VDI) component in Oracle Virtualization 3.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Session. NOTE: this CVE identifier was accidentally used for a Concurrency issue in Java Runtime Environment, but that issue has been reassigned to CVE-2012-0507.
Products affected by CVE-2011-3571
- cpe:2.3:a:oracle:virtualization:3.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-3571
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 60 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-3571
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.6
|
LOW | AV:N/AC:H/Au:S/C:P/I:P/A:N |
3.9
|
4.9
|
NIST |
References for CVE-2011-3571
-
http://secunia.com/advisories/48074
Sign in
-
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
Oracle Critical Patch Update - January 2012Vendor Advisory
-
http://secunia.com/advisories/48073
Sign in
-
http://lists.opensuse.org/opensuse-updates/2012-10/msg00041.html
openSUSE-SU-2012:1323-1: virtualbox: update to 4.1.22 stable release
-
http://security.gentoo.org/glsa/glsa-201406-32.xml
IcedTea JDK: Multiple vulnerabilities (GLSA 201406-32) — Gentoo security
Jump to