Multiples vulnérabilités dans Oracle Virtualization affectant l'intégrité la confidentialité et permettant l'exécution de code arbitraire et le déni de service

The CERT-FR report highlights multiple vulnerabilities in Oracle Virtualization that pose risks to data integrity, confidentiality, and enable remote arbitrary code execution and denial of service attacks. Affected systems include Oracle VM VirtualBox versions 7.1

x prior to 7.1.2 and versions prior to 7.0.22. Remediation steps involve referring to the Oracle Security Bulletin cpuoct2024 from October 15, 2024, for obtaining patches. Specific CVE references are provided for tracking and further information.
https://www.cert.ssi.gouv.fr/avis/CERTFR-2024-AVI-0887/