CVE-2014-4228

{"id": "CVE-2014-4228", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.4, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-07-17T05:10:16.593", "references": [{"url": "http://seclists.org/fulldisclosure/2014/Dec/23", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded", "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/68601", "source": "secalert_us@oracle.com"}, {"url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94613", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality, integrity, and availability via vectors related to Graphics driver (WDDM) for Windows guests."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle VM VirtualBox en Oracle Virtualization VirtualBox anterior a 4.1.34, 4.2.26 y 4.3.12 permite a usuarios locales afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores relacionados con el controlador Graphics (WDDM) para los invitados de Windows."}], "lastModified": "2018-10-09T19:48:15.893", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD89C065-F430-4CF1-8F49-FF0EEA543708", "versionEndIncluding": "4.1.32"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0752242-640A-45C9-8489-29CA18EB63E2"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0B8C422-5A43-42E5-88C0-A9FC95D93ACC"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C961D5C9-421D-49F1-93AA-45366E726772"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE26DC6A-3BEE-4CCD-822C-026A8B29A4EC"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3846D80E-F14A-43F9-BDB9-2558979EF3F4"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91A6F1E9-4FD2-40D4-95C8-0B862D390DE3"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E0D8861-5F1E-44DB-85DE-CC2951AE359E"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "458197CB-6044-4166-AF84-89808C55B940"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3554B64F-8A8B-47A8-8E42-7748ACBE4B21"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A5FF0AC-F6B8-4B3A-9E4B-2CB27B2444D5"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F36A26BF-A0AC-4FF1-89FA-4A1FE56DC36F"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2D30D84-F7D1-45C6-8E3F-783019A5EA75"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3F9589B-9AAA-4E7E-94BE-94810A4D5C96"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.26:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "532C1B8D-1D26-4A33-82D0-7157DA987B15"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.28:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B836773-3EF0-468E-A74C-6C7354355AEC"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.1.30:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "031DD371-DCBB-4347-B484-E2E6372DC800"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31F8EE47-9B75-4AEE-9DB8-16FE537E65ED", "versionEndIncluding": "4.3.10"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C652C69-3F7D-4527-9D8B-81C95D2B5194"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0D46897-F49D-4D9A-819A-846F6833F3B0"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED513E51-2F4F-4CBA-BA4E-0960C76775D0"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22B0A194-02D5-4F3B-9317-2AB267D7E447"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.3.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AF46B0B-CE43-462B-A33A-F561DA0B7154"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE4DB37F-B15B-453E-B81A-3ABF7EF84C82", "versionEndIncluding": "4.2.24"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB32F058-DDF8-4942-8D40-E3F97E4A44CD"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6BF7C87-3D44-4BAD-8A13-A0D3CEF6B413"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39A70834-328F-4095-8515-DCF00EB7F41A"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9EDA1CE-050F-4386-AC6D-690D4337ACF6"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "783B92AB-5FAA-43A6-8525-9725289B6785"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7AFC93C-A4AC-4189-B467-07C4CC7D2810"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90379DE6-0E7E-4577-AF55-51801EEC5996"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8405F02F-805E-4472-A6B3-EC7746E25141"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71F68055-FD2D-4B4C-A0C7-EC507D4D82B4"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C5E21CB-335F-4DE0-A578-C3097E0D5AE0"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C50DDA06-9C87-494C-B3F4-C8919FB47A27"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.2.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17DF243D-B9DB-4FBB-AF67-D07CF36E8542"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}