CVE-2014-0405
EPSS 0.07%
Description
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0407.
How to fix CVE-2014-0405
To remediate CVE-2014-0405, upgrade the affected package to a fixed version below.
- Debian/virtualbox-guest-additions-iso—upgrade to 4.3.10-1 or later
Is CVE-2014-0405 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4.3.10-1