Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-2xmv-8fj4-bke9
Vulnerability ID VCID-2xmv-8fj4-bke9
Aliases CVE-2012-3221
Summary Multiple vulnerabilities have been found in VirtualBox, allowing local attackers to escalate their privileges or cause a Denial of Service condition.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
epss 0.00396 https://api.first.org/data/v1/epss?cve=CVE-2012-3221
cvssv2 2.1 https://nvd.nist.gov/vuln/detail/CVE-2012-3221
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2012-3221
https://exchange.xforce.ibmcloud.com/vulnerabilities/79380
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16681
http://www.debian.org/security/2012/dsa-2594
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
http://www.securityfocus.com/bid/56045
http://www.securitytracker.com/id?1027666
690777 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690777
cpe:2.3:a:oracle:virtualization:3.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:virtualization:3.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:virtualization:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:virtualization:4.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:virtualization:4.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:virtualization:4.1:*:*:*:*:*:*:*
CVE-2012-3221 https://nvd.nist.gov/vuln/detail/CVE-2012-3221
GLSA-201401-13 https://security.gentoo.org/glsa/201401-13
OSVDB-86384;CVE-2012-3221;OSVDB-85356 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux_x86-64/dos/21224.c
OSVDB-86384;CVE-2012-3221;OSVDB-85356 Exploit https://www.securityfocus.com/bid/55471/info
Data source Exploit-DB
Date added Sept. 10, 2012
Description Oracle VM VirtualBox 4.1 - Local Denial of Service
Ransomware campaign use Unknown
Source publication date Sept. 10, 2012
Exploit type dos
Platform linux_x86-64
Source update date Nov. 15, 2017
Source URL https://www.securityfocus.com/bid/55471/info
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2012-3221
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.60293
EPSS Score 0.00396
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:11:54.201894+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201401-13 38.0.0