VulnerableCode Package Details - pkg:deb/debian/virtualbox@5.1.20-dfsg-1?distro=sid

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/virtualbox@5.1.20-dfsg-1?distro=sid

Essentials
History (24)

purl	pkg:deb/debian/virtualbox@5.1.20-dfsg-1?distro=sid

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (8)

Vulnerability	Summary	Aliases
VCID-59ka-knuq-pfdb	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle VM VirtualBox accessible data. CVSS 3.0 Base Score 2.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N).	CVE-2017-3513
VCID-5g31-n2ar-zuea	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).	CVE-2017-3576
VCID-6j81-1pbz-ufcj	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox as well as unauthorized update, insert or delete access to some of Oracle VM VirtualBox accessible data and unauthorized read access to a subset of Oracle VM VirtualBox accessible data. CVSS 3.0 Base Score 7.9 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H).	CVE-2017-3559
VCID-9nw5-sjhs-qkcd	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).	CVE-2017-3563
VCID-aps4-nm33-kqft	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. CVSS 3.0 Base Score 7.9 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H).	CVE-2017-3575
VCID-pfqq-62vj-xqes	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).	CVE-2017-3561
VCID-q4r8-w7tf-ykab	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox as well as unauthorized update, insert or delete access to some of Oracle VM VirtualBox accessible data and unauthorized read access to a subset of Oracle VM VirtualBox accessible data. CVSS 3.0 Base Score 8.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:H).	CVE-2017-3558
VCID-vvr9-723e-4fcj	Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Shared Folder). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.4 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H).	CVE-2017-3587

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:27:14.394824+00:00	Debian Importer	Fixing	VCID-5g31-n2ar-zuea	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:15:04.953581+00:00	Debian Importer	Fixing	VCID-q4r8-w7tf-ykab	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:39:21.393585+00:00	Debian Importer	Fixing	VCID-pfqq-62vj-xqes	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:59:28.409167+00:00	Debian Importer	Fixing	VCID-aps4-nm33-kqft	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:13:10.034219+00:00	Debian Importer	Fixing	VCID-vvr9-723e-4fcj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:37:10.461436+00:00	Debian Importer	Fixing	VCID-9nw5-sjhs-qkcd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:10:31.649421+00:00	Debian Importer	Fixing	VCID-59ka-knuq-pfdb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:01:19.761022+00:00	Debian Importer	Fixing	VCID-6j81-1pbz-ufcj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:31:30.186302+00:00	Debian Importer	Fixing	VCID-5g31-n2ar-zuea	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:22:47.523468+00:00	Debian Importer	Fixing	VCID-q4r8-w7tf-ykab	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:56:26.078187+00:00	Debian Importer	Fixing	VCID-pfqq-62vj-xqes	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:27:28.129799+00:00	Debian Importer	Fixing	VCID-aps4-nm33-kqft	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:52:15.791780+00:00	Debian Importer	Fixing	VCID-vvr9-723e-4fcj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:24:13.586344+00:00	Debian Importer	Fixing	VCID-9nw5-sjhs-qkcd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:08:31.080438+00:00	Debian Importer	Fixing	VCID-59ka-knuq-pfdb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:02:58.348836+00:00	Debian Importer	Fixing	VCID-6j81-1pbz-ufcj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:56:09.637205+00:00	Debian Importer	Fixing	VCID-vvr9-723e-4fcj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.617093+00:00	Debian Importer	Fixing	VCID-5g31-n2ar-zuea	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.597006+00:00	Debian Importer	Fixing	VCID-aps4-nm33-kqft	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.576874+00:00	Debian Importer	Fixing	VCID-9nw5-sjhs-qkcd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.556752+00:00	Debian Importer	Fixing	VCID-pfqq-62vj-xqes	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.536796+00:00	Debian Importer	Fixing	VCID-6j81-1pbz-ufcj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.516497+00:00	Debian Importer	Fixing	VCID-q4r8-w7tf-ykab	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:09.475107+00:00	Debian Importer	Fixing	VCID-59ka-knuq-pfdb	https://security-tracker.debian.org/tracker/data/json	38.1.0