CVE-2014-6588

high

Description

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6589, CVE-2014-6590, CVE-2014-6595, and CVE-2015-0427.

References

https://security.gentoo.org/glsa/201612-27

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html

Details

Source: Mitre, NVD

Published: 2015-01-21

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 3.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:P/A:P

Severity: Low

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High