VIR Vulnerability Intelligence Relay

CVE-2014-2488

low
Published 2014-07-17 · Modified 2026-05-06
CVSS v3
VIR risk
1.0

Description

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 3.2.24, 4.0.26, 4.1.34, 4.2.26, and 4.3.12 allows local users to affect confidentiality via unknown vectors related to Core.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

OS impact
OSVersionStatusFixed in
debian debiansidfixed4.3.12-dfsg-1

Application impact
VendorProductVersionsFixed
oracle oraclevm_virtualbox{"endIncluding":"3.2.22"}
oracle oraclevm_virtualbox3.2
oracle oraclevm_virtualbox3.2.0
oracle oraclevm_virtualbox3.2.2
oracle oraclevm_virtualbox3.2.4
oracle oraclevm_virtualbox3.2.6
oracle oraclevm_virtualbox3.2.8
oracle oraclevm_virtualbox3.2.10
oracle oraclevm_virtualbox3.2.12
oracle oraclevm_virtualbox3.2.14
oracle oraclevm_virtualbox3.2.16
oracle oraclevm_virtualbox3.2.18
oracle oraclevm_virtualbox3.2.20
oracle oraclevm_virtualbox4.0
oracle oraclevm_virtualbox4.0.0
oracle oraclevm_virtualbox4.0.2
oracle oraclevm_virtualbox4.0.4
oracle oraclevm_virtualbox4.0.6
oracle oraclevm_virtualbox4.0.8
oracle oraclevm_virtualbox4.0.10
oracle oraclevm_virtualbox4.0.12
oracle oraclevm_virtualbox4.0.14
oracle oraclevm_virtualbox4.0.16
oracle oraclevm_virtualbox4.0.18
oracle oraclevm_virtualbox4.0.20
oracle oraclevm_virtualbox4.0.22
oracle oraclevm_virtualbox4.3.0
oracle oraclevm_virtualbox4.3.2
oracle oraclevm_virtualbox4.3.4
oracle oraclevm_virtualbox4.3.6
oracle oraclevm_virtualbox4.3.8
oracle oraclevm_virtualbox4.2.0
oracle oraclevm_virtualbox4.2.2
oracle oraclevm_virtualbox4.2.4
oracle oraclevm_virtualbox4.2.6
oracle oraclevm_virtualbox4.2.8
oracle oraclevm_virtualbox4.2.10
oracle oraclevm_virtualbox4.2.12
oracle oraclevm_virtualbox4.2.14
oracle oraclevm_virtualbox4.2.16
oracle oraclevm_virtualbox4.2.18
oracle oraclevm_virtualbox4.2.20
oracle oraclevm_virtualbox4.2.22
oracle oraclevm_virtualbox4.1.0
oracle oraclevm_virtualbox4.1.2
oracle oraclevm_virtualbox4.1.4
oracle oraclevm_virtualbox4.1.6
oracle oraclevm_virtualbox4.1.8
oracle oraclevm_virtualbox4.1.10
oracle oraclevm_virtualbox4.1.12
oracle oraclevm_virtualbox4.1.14
oracle oraclevm_virtualbox4.1.16
oracle oraclevm_virtualbox4.1.18
oracle oraclevm_virtualbox4.1.20
oracle oraclevm_virtualbox4.1.22
oracle oraclevm_virtualbox4.1.24
oracle oraclevm_virtualbox4.1.26
oracle oraclevm_virtualbox4.1.28
oracle oraclevm_virtualbox4.1.30

References

💬 Discuss CVE-2014-2488 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.