Vulnerability Details : CVE-2016-0495
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.36 and 5.0.14 allows remote attackers to affect availability via unknown vectors related to Core.
Products affected by CVE-2016-0495
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-0495
1.00%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-0495
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST |
References for CVE-2016-0495
-
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
Oracle Critical Patch Update - January 2016Vendor Advisory
-
http://www.securityfocus.com/bid/81214
Oracle Virtualization CVE-2016-0495 Remote Security VulnerabilityThird Party Advisory;VDB Entry
-
http://www.debian.org/security/2016/dsa-3454
Debian -- Security Information -- DSA-3454-1 virtualboxThird Party Advisory
-
http://www.securitytracker.com/id/1034731
Oracle VM VirtualBox Flaws Let Remote or Local Users Partially Deny Service and Local Users Gain Elevated Privileges - SecurityTrackerThird Party Advisory;VDB Entry
Jump to