Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-7wuj-m4tx-hket
Vulnerability ID VCID-7wuj-m4tx-hket
Aliases CVE-2017-10236
Summary Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). The supported version that is affected is Prior to 5.1.24. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox as well as unauthorized update, insert or delete access to some of Oracle VM VirtualBox accessible data and unauthorized read access to a subset of Oracle VM VirtualBox accessible data. CVSS 3.0 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:H).
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
epss 0.00059 https://api.first.org/data/v1/epss?cve=CVE-2017-10236
ssvc Track http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
ssvc Track http://www.securityfocus.com/bid/99645
ssvc Track http://www.securitytracker.com/id/1038929
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2017-10236
1038929 http://www.securitytracker.com/id/1038929
99645 http://www.securityfocus.com/bid/99645
No exploits are available.
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T15:49:14Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T15:49:14Z/ Found at http://www.securityfocus.com/bid/99645
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T15:49:14Z/ Found at http://www.securitytracker.com/id/1038929
Exploit Prediction Scoring System (EPSS)
Percentile 0.18554
EPSS Score 0.00059
Published At April 12, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T17:49:21.376556+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 38.0.0