Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
Typedeb
Namespacedebian
Namevirtualbox
Version7.2.6-dfsg-1
Qualifiers
distro sid
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version7.2.6-dfsg-3.2
Latest_non_vulnerable_version7.2.8-dfsg-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-2f6u-9ns4-s3bx
vulnerability_id VCID-2f6u-9ns4-s3bx
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21985
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.06372
published_at 2026-05-14T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.0636
published_at 2026-05-12T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.05891
published_at 2026-04-02T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.05925
published_at 2026-04-04T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.05914
published_at 2026-04-07T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.05952
published_at 2026-04-08T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.05992
published_at 2026-04-09T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05973
published_at 2026-04-11T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05964
published_at 2026-04-12T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.05954
published_at 2026-04-13T12:55:00Z
10
value 0.00022
scoring_system epss
scoring_elements 0.0592
published_at 2026-04-16T12:55:00Z
11
value 0.00022
scoring_system epss
scoring_elements 0.05931
published_at 2026-04-18T12:55:00Z
12
value 0.00022
scoring_system epss
scoring_elements 0.06082
published_at 2026-04-21T12:55:00Z
13
value 0.00022
scoring_system epss
scoring_elements 0.06104
published_at 2026-04-24T12:55:00Z
14
value 0.00022
scoring_system epss
scoring_elements 0.06133
published_at 2026-04-26T12:55:00Z
15
value 0.00022
scoring_system epss
scoring_elements 0.06141
published_at 2026-04-29T12:55:00Z
16
value 0.00022
scoring_system epss
scoring_elements 0.06163
published_at 2026-05-05T12:55:00Z
17
value 0.00022
scoring_system epss
scoring_elements 0.06263
published_at 2026-05-07T12:55:00Z
18
value 0.00022
scoring_system epss
scoring_elements 0.06337
published_at 2026-05-09T12:55:00Z
19
value 0.00022
scoring_system epss
scoring_elements 0.06352
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21985
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T18:56:39Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21985
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2f6u-9ns4-s3bx
1
url VCID-3nw6-9452-6bgk
vulnerability_id VCID-3nw6-9452-6bgk
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21984
reference_id
reference_type
scores
0
value 0.00029
scoring_system epss
scoring_elements 0.08318
published_at 2026-05-14T12:55:00Z
1
value 0.00029
scoring_system epss
scoring_elements 0.08262
published_at 2026-05-12T12:55:00Z
2
value 0.00029
scoring_system epss
scoring_elements 0.08113
published_at 2026-04-02T12:55:00Z
3
value 0.00029
scoring_system epss
scoring_elements 0.08155
published_at 2026-04-04T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.08102
published_at 2026-04-07T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08161
published_at 2026-04-08T12:55:00Z
6
value 0.00029
scoring_system epss
scoring_elements 0.08183
published_at 2026-04-09T12:55:00Z
7
value 0.00029
scoring_system epss
scoring_elements 0.08177
published_at 2026-04-11T12:55:00Z
8
value 0.00029
scoring_system epss
scoring_elements 0.08157
published_at 2026-04-12T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.0814
published_at 2026-04-13T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.08046
published_at 2026-04-16T12:55:00Z
11
value 0.00029
scoring_system epss
scoring_elements 0.08031
published_at 2026-04-18T12:55:00Z
12
value 0.00029
scoring_system epss
scoring_elements 0.0819
published_at 2026-04-21T12:55:00Z
13
value 0.00029
scoring_system epss
scoring_elements 0.08159
published_at 2026-04-24T12:55:00Z
14
value 0.00029
scoring_system epss
scoring_elements 0.08124
published_at 2026-04-26T12:55:00Z
15
value 0.00029
scoring_system epss
scoring_elements 0.08085
published_at 2026-04-29T12:55:00Z
16
value 0.00029
scoring_system epss
scoring_elements 0.08048
published_at 2026-05-05T12:55:00Z
17
value 0.00029
scoring_system epss
scoring_elements 0.08181
published_at 2026-05-07T12:55:00Z
18
value 0.00029
scoring_system epss
scoring_elements 0.0825
published_at 2026-05-09T12:55:00Z
19
value 0.00029
scoring_system epss
scoring_elements 0.08234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21984
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:22Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21984
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3nw6-9452-6bgk
2
url VCID-3y8r-53vp-cbbx
vulnerability_id VCID-3y8r-53vp-cbbx
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows unauthenticated attacker with access to the physical communication segment attached to the hardware where the Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21982
reference_id
reference_type
scores
0
value 0.00068
scoring_system epss
scoring_elements 0.20851
published_at 2026-05-14T12:55:00Z
1
value 0.00068
scoring_system epss
scoring_elements 0.20761
published_at 2026-05-12T12:55:00Z
2
value 0.00068
scoring_system epss
scoring_elements 0.21079
published_at 2026-04-02T12:55:00Z
3
value 0.00068
scoring_system epss
scoring_elements 0.21132
published_at 2026-04-04T12:55:00Z
4
value 0.00068
scoring_system epss
scoring_elements 0.20846
published_at 2026-04-07T12:55:00Z
5
value 0.00068
scoring_system epss
scoring_elements 0.20926
published_at 2026-04-08T12:55:00Z
6
value 0.00068
scoring_system epss
scoring_elements 0.20988
published_at 2026-04-09T12:55:00Z
7
value 0.00068
scoring_system epss
scoring_elements 0.21004
published_at 2026-04-11T12:55:00Z
8
value 0.00068
scoring_system epss
scoring_elements 0.2096
published_at 2026-04-12T12:55:00Z
9
value 0.00068
scoring_system epss
scoring_elements 0.20906
published_at 2026-04-13T12:55:00Z
10
value 0.00068
scoring_system epss
scoring_elements 0.20897
published_at 2026-04-16T12:55:00Z
11
value 0.00068
scoring_system epss
scoring_elements 0.20898
published_at 2026-04-18T12:55:00Z
12
value 0.00068
scoring_system epss
scoring_elements 0.20879
published_at 2026-04-21T12:55:00Z
13
value 0.00068
scoring_system epss
scoring_elements 0.2075
published_at 2026-04-24T12:55:00Z
14
value 0.00068
scoring_system epss
scoring_elements 0.20746
published_at 2026-05-11T12:55:00Z
15
value 0.00068
scoring_system epss
scoring_elements 0.20712
published_at 2026-04-29T12:55:00Z
16
value 0.00068
scoring_system epss
scoring_elements 0.20609
published_at 2026-05-05T12:55:00Z
17
value 0.00068
scoring_system epss
scoring_elements 0.20683
published_at 2026-05-07T12:55:00Z
18
value 0.00068
scoring_system epss
scoring_elements 0.20771
published_at 2026-05-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21982
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:25Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21982
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3y8r-53vp-cbbx
3
url VCID-8fwv-bnnu-7bf7
vulnerability_id VCID-8fwv-bnnu-7bf7
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21963
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05831
published_at 2026-05-14T12:55:00Z
1
value 0.0002
scoring_system epss
scoring_elements 0.05826
published_at 2026-05-12T12:55:00Z
2
value 0.0002
scoring_system epss
scoring_elements 0.05412
published_at 2026-04-16T12:55:00Z
3
value 0.0002
scoring_system epss
scoring_elements 0.05445
published_at 2026-04-04T12:55:00Z
4
value 0.0002
scoring_system epss
scoring_elements 0.05451
published_at 2026-04-07T12:55:00Z
5
value 0.0002
scoring_system epss
scoring_elements 0.05486
published_at 2026-04-08T12:55:00Z
6
value 0.0002
scoring_system epss
scoring_elements 0.05508
published_at 2026-04-09T12:55:00Z
7
value 0.0002
scoring_system epss
scoring_elements 0.05482
published_at 2026-04-11T12:55:00Z
8
value 0.0002
scoring_system epss
scoring_elements 0.05468
published_at 2026-04-12T12:55:00Z
9
value 0.0002
scoring_system epss
scoring_elements 0.05461
published_at 2026-04-13T12:55:00Z
10
value 0.0002
scoring_system epss
scoring_elements 0.05421
published_at 2026-04-18T12:55:00Z
11
value 0.0002
scoring_system epss
scoring_elements 0.05592
published_at 2026-04-21T12:55:00Z
12
value 0.0002
scoring_system epss
scoring_elements 0.05624
published_at 2026-04-24T12:55:00Z
13
value 0.0002
scoring_system epss
scoring_elements 0.05661
published_at 2026-04-26T12:55:00Z
14
value 0.0002
scoring_system epss
scoring_elements 0.05666
published_at 2026-04-29T12:55:00Z
15
value 0.0002
scoring_system epss
scoring_elements 0.05668
published_at 2026-05-05T12:55:00Z
16
value 0.0002
scoring_system epss
scoring_elements 0.05723
published_at 2026-05-07T12:55:00Z
17
value 0.0002
scoring_system epss
scoring_elements 0.05811
published_at 2026-05-09T12:55:00Z
18
value 0.0002
scoring_system epss
scoring_elements 0.05823
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21963
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T15:48:27Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21963
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8fwv-bnnu-7bf7
4
url VCID-9nhh-x1t1-uqcq
vulnerability_id VCID-9nhh-x1t1-uqcq
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. Note: This vulnerability applies to Windows VMs only. CVSS 3.1 Base Score 7.1 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21986
reference_id
reference_type
scores
0
value 0.00021
scoring_system epss
scoring_elements 0.0591
published_at 2026-05-14T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.05902
published_at 2026-05-12T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05489
published_at 2026-04-02T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05523
published_at 2026-04-07T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.0556
published_at 2026-04-08T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05584
published_at 2026-04-09T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05557
published_at 2026-04-11T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.05544
published_at 2026-04-12T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05537
published_at 2026-04-13T12:55:00Z
9
value 0.00021
scoring_system epss
scoring_elements 0.05487
published_at 2026-04-16T12:55:00Z
10
value 0.00021
scoring_system epss
scoring_elements 0.05497
published_at 2026-04-18T12:55:00Z
11
value 0.00021
scoring_system epss
scoring_elements 0.05659
published_at 2026-04-21T12:55:00Z
12
value 0.00021
scoring_system epss
scoring_elements 0.05694
published_at 2026-04-24T12:55:00Z
13
value 0.00021
scoring_system epss
scoring_elements 0.05731
published_at 2026-04-26T12:55:00Z
14
value 0.00021
scoring_system epss
scoring_elements 0.05737
published_at 2026-04-29T12:55:00Z
15
value 0.00021
scoring_system epss
scoring_elements 0.05744
published_at 2026-05-05T12:55:00Z
16
value 0.00021
scoring_system epss
scoring_elements 0.05821
published_at 2026-05-07T12:55:00Z
17
value 0.00021
scoring_system epss
scoring_elements 0.05887
published_at 2026-05-09T12:55:00Z
18
value 0.00021
scoring_system epss
scoring_elements 0.05901
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21986
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T18:57:14Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21986
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9nhh-x1t1-uqcq
5
url VCID-am22-e2qp-abgn
vulnerability_id VCID-am22-e2qp-abgn
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21956
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.12907
published_at 2026-05-14T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.12838
published_at 2026-05-12T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.12967
published_at 2026-04-02T12:55:00Z
3
value 0.00042
scoring_system epss
scoring_elements 0.13016
published_at 2026-04-04T12:55:00Z
4
value 0.00042
scoring_system epss
scoring_elements 0.12816
published_at 2026-04-07T12:55:00Z
5
value 0.00042
scoring_system epss
scoring_elements 0.12895
published_at 2026-04-08T12:55:00Z
6
value 0.00042
scoring_system epss
scoring_elements 0.12945
published_at 2026-04-09T12:55:00Z
7
value 0.00042
scoring_system epss
scoring_elements 0.12903
published_at 2026-04-11T12:55:00Z
8
value 0.00042
scoring_system epss
scoring_elements 0.12868
published_at 2026-04-12T12:55:00Z
9
value 0.00042
scoring_system epss
scoring_elements 0.12822
published_at 2026-04-13T12:55:00Z
10
value 0.00042
scoring_system epss
scoring_elements 0.12726
published_at 2026-04-16T12:55:00Z
11
value 0.00042
scoring_system epss
scoring_elements 0.12729
published_at 2026-04-18T12:55:00Z
12
value 0.00042
scoring_system epss
scoring_elements 0.12831
published_at 2026-04-21T12:55:00Z
13
value 0.00042
scoring_system epss
scoring_elements 0.1285
published_at 2026-04-24T12:55:00Z
14
value 0.00042
scoring_system epss
scoring_elements 0.12812
published_at 2026-04-26T12:55:00Z
15
value 0.00042
scoring_system epss
scoring_elements 0.12706
published_at 2026-04-29T12:55:00Z
16
value 0.00042
scoring_system epss
scoring_elements 0.1261
published_at 2026-05-05T12:55:00Z
17
value 0.00042
scoring_system epss
scoring_elements 0.12747
published_at 2026-05-07T12:55:00Z
18
value 0.00042
scoring_system epss
scoring_elements 0.12817
published_at 2026-05-09T12:55:00Z
19
value 0.00042
scoring_system epss
scoring_elements 0.1281
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21956
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:39Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21956
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-am22-e2qp-abgn
6
url VCID-bmx5-9hrx-5be9
vulnerability_id VCID-bmx5-9hrx-5be9
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21955
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.12907
published_at 2026-05-14T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.12838
published_at 2026-05-12T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.12967
published_at 2026-04-02T12:55:00Z
3
value 0.00042
scoring_system epss
scoring_elements 0.13016
published_at 2026-04-04T12:55:00Z
4
value 0.00042
scoring_system epss
scoring_elements 0.12816
published_at 2026-04-07T12:55:00Z
5
value 0.00042
scoring_system epss
scoring_elements 0.12895
published_at 2026-04-08T12:55:00Z
6
value 0.00042
scoring_system epss
scoring_elements 0.12945
published_at 2026-04-09T12:55:00Z
7
value 0.00042
scoring_system epss
scoring_elements 0.12903
published_at 2026-04-11T12:55:00Z
8
value 0.00042
scoring_system epss
scoring_elements 0.12868
published_at 2026-04-12T12:55:00Z
9
value 0.00042
scoring_system epss
scoring_elements 0.12822
published_at 2026-04-13T12:55:00Z
10
value 0.00042
scoring_system epss
scoring_elements 0.12726
published_at 2026-04-16T12:55:00Z
11
value 0.00042
scoring_system epss
scoring_elements 0.12729
published_at 2026-04-18T12:55:00Z
12
value 0.00042
scoring_system epss
scoring_elements 0.12831
published_at 2026-04-21T12:55:00Z
13
value 0.00042
scoring_system epss
scoring_elements 0.1285
published_at 2026-04-24T12:55:00Z
14
value 0.00042
scoring_system epss
scoring_elements 0.12812
published_at 2026-04-26T12:55:00Z
15
value 0.00042
scoring_system epss
scoring_elements 0.12706
published_at 2026-04-29T12:55:00Z
16
value 0.00042
scoring_system epss
scoring_elements 0.1261
published_at 2026-05-05T12:55:00Z
17
value 0.00042
scoring_system epss
scoring_elements 0.12747
published_at 2026-05-07T12:55:00Z
18
value 0.00042
scoring_system epss
scoring_elements 0.12817
published_at 2026-05-09T12:55:00Z
19
value 0.00042
scoring_system epss
scoring_elements 0.1281
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21955
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:37Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21955
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bmx5-9hrx-5be9
7
url VCID-d9ub-1pgd-bfc2
vulnerability_id VCID-d9ub-1pgd-bfc2
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21983
reference_id
reference_type
scores
0
value 0.00029
scoring_system epss
scoring_elements 0.08318
published_at 2026-05-14T12:55:00Z
1
value 0.00029
scoring_system epss
scoring_elements 0.08262
published_at 2026-05-12T12:55:00Z
2
value 0.00029
scoring_system epss
scoring_elements 0.08113
published_at 2026-04-02T12:55:00Z
3
value 0.00029
scoring_system epss
scoring_elements 0.08155
published_at 2026-04-04T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.08102
published_at 2026-04-07T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08161
published_at 2026-04-08T12:55:00Z
6
value 0.00029
scoring_system epss
scoring_elements 0.08183
published_at 2026-04-09T12:55:00Z
7
value 0.00029
scoring_system epss
scoring_elements 0.08177
published_at 2026-04-11T12:55:00Z
8
value 0.00029
scoring_system epss
scoring_elements 0.08157
published_at 2026-04-12T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.0814
published_at 2026-04-13T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.08046
published_at 2026-04-16T12:55:00Z
11
value 0.00029
scoring_system epss
scoring_elements 0.08031
published_at 2026-04-18T12:55:00Z
12
value 0.00029
scoring_system epss
scoring_elements 0.0819
published_at 2026-04-21T12:55:00Z
13
value 0.00029
scoring_system epss
scoring_elements 0.08159
published_at 2026-04-24T12:55:00Z
14
value 0.00029
scoring_system epss
scoring_elements 0.08124
published_at 2026-04-26T12:55:00Z
15
value 0.00029
scoring_system epss
scoring_elements 0.08085
published_at 2026-04-29T12:55:00Z
16
value 0.00029
scoring_system epss
scoring_elements 0.08048
published_at 2026-05-05T12:55:00Z
17
value 0.00029
scoring_system epss
scoring_elements 0.08181
published_at 2026-05-07T12:55:00Z
18
value 0.00029
scoring_system epss
scoring_elements 0.0825
published_at 2026-05-09T12:55:00Z
19
value 0.00029
scoring_system epss
scoring_elements 0.08234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21983
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:23Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21983
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9ub-1pgd-bfc2
8
url VCID-dhj9-zmhu-afe9
vulnerability_id VCID-dhj9-zmhu-afe9
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 4.6 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21981
reference_id
reference_type
scores
0
value 0.00019
scoring_system epss
scoring_elements 0.0512
published_at 2026-05-14T12:55:00Z
1
value 0.00019
scoring_system epss
scoring_elements 0.05122
published_at 2026-05-12T12:55:00Z
2
value 0.00019
scoring_system epss
scoring_elements 0.04816
published_at 2026-04-02T12:55:00Z
3
value 0.00019
scoring_system epss
scoring_elements 0.04841
published_at 2026-04-04T12:55:00Z
4
value 0.00019
scoring_system epss
scoring_elements 0.04859
published_at 2026-04-07T12:55:00Z
5
value 0.00019
scoring_system epss
scoring_elements 0.04897
published_at 2026-04-08T12:55:00Z
6
value 0.00019
scoring_system epss
scoring_elements 0.04913
published_at 2026-04-09T12:55:00Z
7
value 0.00019
scoring_system epss
scoring_elements 0.04896
published_at 2026-04-11T12:55:00Z
8
value 0.00019
scoring_system epss
scoring_elements 0.04876
published_at 2026-04-12T12:55:00Z
9
value 0.00019
scoring_system epss
scoring_elements 0.04856
published_at 2026-04-13T12:55:00Z
10
value 0.00019
scoring_system epss
scoring_elements 0.04804
published_at 2026-04-16T12:55:00Z
11
value 0.00019
scoring_system epss
scoring_elements 0.04813
published_at 2026-04-18T12:55:00Z
12
value 0.00019
scoring_system epss
scoring_elements 0.04957
published_at 2026-04-21T12:55:00Z
13
value 0.00019
scoring_system epss
scoring_elements 0.0499
published_at 2026-04-24T12:55:00Z
14
value 0.00019
scoring_system epss
scoring_elements 0.05031
published_at 2026-04-26T12:55:00Z
15
value 0.00019
scoring_system epss
scoring_elements 0.05027
published_at 2026-04-29T12:55:00Z
16
value 0.00019
scoring_system epss
scoring_elements 0.05019
published_at 2026-05-05T12:55:00Z
17
value 0.00019
scoring_system epss
scoring_elements 0.05067
published_at 2026-05-07T12:55:00Z
18
value 0.00019
scoring_system epss
scoring_elements 0.05116
published_at 2026-05-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21981
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 4.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T14:30:49Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21981
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dhj9-zmhu-afe9
9
url VCID-dn5h-hfy6-sfaq
vulnerability_id VCID-dn5h-hfy6-sfaq
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21987
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.03273
published_at 2026-05-14T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.0324
published_at 2026-05-12T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.03086
published_at 2026-04-02T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.031
published_at 2026-04-04T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.03101
published_at 2026-04-07T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.03105
published_at 2026-04-08T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.0313
published_at 2026-04-09T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.03093
published_at 2026-04-11T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03069
published_at 2026-04-12T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.03057
published_at 2026-04-13T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.03033
published_at 2026-04-16T12:55:00Z
11
value 0.00015
scoring_system epss
scoring_elements 0.03042
published_at 2026-04-18T12:55:00Z
12
value 0.00015
scoring_system epss
scoring_elements 0.03162
published_at 2026-04-21T12:55:00Z
13
value 0.00015
scoring_system epss
scoring_elements 0.03165
published_at 2026-04-24T12:55:00Z
14
value 0.00015
scoring_system epss
scoring_elements 0.03158
published_at 2026-04-26T12:55:00Z
15
value 0.00015
scoring_system epss
scoring_elements 0.03206
published_at 2026-04-29T12:55:00Z
16
value 0.00015
scoring_system epss
scoring_elements 0.03169
published_at 2026-05-05T12:55:00Z
17
value 0.00015
scoring_system epss
scoring_elements 0.03194
published_at 2026-05-07T12:55:00Z
18
value 0.00015
scoring_system epss
scoring_elements 0.0323
published_at 2026-05-09T12:55:00Z
19
value 0.00015
scoring_system epss
scoring_elements 0.03234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21987
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:21Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21987
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dn5h-hfy6-sfaq
10
url VCID-fuqf-teut-wugw
vulnerability_id VCID-fuqf-teut-wugw
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21957
reference_id
reference_type
scores
0
value 0.00029
scoring_system epss
scoring_elements 0.08318
published_at 2026-05-14T12:55:00Z
1
value 0.00029
scoring_system epss
scoring_elements 0.08262
published_at 2026-05-12T12:55:00Z
2
value 0.00029
scoring_system epss
scoring_elements 0.08113
published_at 2026-04-02T12:55:00Z
3
value 0.00029
scoring_system epss
scoring_elements 0.08155
published_at 2026-04-04T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.08102
published_at 2026-04-07T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08161
published_at 2026-04-08T12:55:00Z
6
value 0.00029
scoring_system epss
scoring_elements 0.08183
published_at 2026-04-09T12:55:00Z
7
value 0.00029
scoring_system epss
scoring_elements 0.08177
published_at 2026-04-11T12:55:00Z
8
value 0.00029
scoring_system epss
scoring_elements 0.08157
published_at 2026-04-12T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.0814
published_at 2026-04-13T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.08046
published_at 2026-04-16T12:55:00Z
11
value 0.00029
scoring_system epss
scoring_elements 0.08031
published_at 2026-04-18T12:55:00Z
12
value 0.00029
scoring_system epss
scoring_elements 0.0819
published_at 2026-04-21T12:55:00Z
13
value 0.00029
scoring_system epss
scoring_elements 0.08159
published_at 2026-04-24T12:55:00Z
14
value 0.00029
scoring_system epss
scoring_elements 0.08124
published_at 2026-04-26T12:55:00Z
15
value 0.00029
scoring_system epss
scoring_elements 0.08085
published_at 2026-04-29T12:55:00Z
16
value 0.00029
scoring_system epss
scoring_elements 0.08048
published_at 2026-05-05T12:55:00Z
17
value 0.00029
scoring_system epss
scoring_elements 0.08181
published_at 2026-05-07T12:55:00Z
18
value 0.00029
scoring_system epss
scoring_elements 0.0825
published_at 2026-05-09T12:55:00Z
19
value 0.00029
scoring_system epss
scoring_elements 0.08234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21957
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:40Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21957
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fuqf-teut-wugw
11
url VCID-k56n-ns61-fqe5
vulnerability_id VCID-k56n-ns61-fqe5
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21988
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.03273
published_at 2026-05-14T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.0324
published_at 2026-05-12T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.03086
published_at 2026-04-02T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.031
published_at 2026-04-04T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.03101
published_at 2026-04-07T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.03105
published_at 2026-04-08T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.0313
published_at 2026-04-09T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.03093
published_at 2026-04-11T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03069
published_at 2026-04-12T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.03057
published_at 2026-04-13T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.03033
published_at 2026-04-16T12:55:00Z
11
value 0.00015
scoring_system epss
scoring_elements 0.03042
published_at 2026-04-18T12:55:00Z
12
value 0.00015
scoring_system epss
scoring_elements 0.03162
published_at 2026-04-21T12:55:00Z
13
value 0.00015
scoring_system epss
scoring_elements 0.03165
published_at 2026-04-24T12:55:00Z
14
value 0.00015
scoring_system epss
scoring_elements 0.03158
published_at 2026-04-26T12:55:00Z
15
value 0.00015
scoring_system epss
scoring_elements 0.03206
published_at 2026-04-29T12:55:00Z
16
value 0.00015
scoring_system epss
scoring_elements 0.03169
published_at 2026-05-05T12:55:00Z
17
value 0.00015
scoring_system epss
scoring_elements 0.03194
published_at 2026-05-07T12:55:00Z
18
value 0.00015
scoring_system epss
scoring_elements 0.0323
published_at 2026-05-09T12:55:00Z
19
value 0.00015
scoring_system epss
scoring_elements 0.03234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21988
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:20Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21988
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k56n-ns61-fqe5
12
url VCID-kjsq-rfp7-qbcx
vulnerability_id VCID-kjsq-rfp7-qbcx
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21990
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.03273
published_at 2026-05-14T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.0324
published_at 2026-05-12T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.03086
published_at 2026-04-02T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.031
published_at 2026-04-04T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.03101
published_at 2026-04-07T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.03105
published_at 2026-04-08T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.0313
published_at 2026-04-09T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.03093
published_at 2026-04-11T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03069
published_at 2026-04-12T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.03057
published_at 2026-04-13T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.03033
published_at 2026-04-16T12:55:00Z
11
value 0.00015
scoring_system epss
scoring_elements 0.03042
published_at 2026-04-18T12:55:00Z
12
value 0.00015
scoring_system epss
scoring_elements 0.03162
published_at 2026-04-21T12:55:00Z
13
value 0.00015
scoring_system epss
scoring_elements 0.03165
published_at 2026-04-24T12:55:00Z
14
value 0.00015
scoring_system epss
scoring_elements 0.03158
published_at 2026-04-26T12:55:00Z
15
value 0.00015
scoring_system epss
scoring_elements 0.03206
published_at 2026-04-29T12:55:00Z
16
value 0.00015
scoring_system epss
scoring_elements 0.03169
published_at 2026-05-05T12:55:00Z
17
value 0.00015
scoring_system epss
scoring_elements 0.03194
published_at 2026-05-07T12:55:00Z
18
value 0.00015
scoring_system epss
scoring_elements 0.0323
published_at 2026-05-09T12:55:00Z
19
value 0.00015
scoring_system epss
scoring_elements 0.03234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21990
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:18Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21990
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kjsq-rfp7-qbcx
13
url VCID-q879-2fzs-7fha
vulnerability_id VCID-q879-2fzs-7fha
summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21989
reference_id
reference_type
scores
0
value 0.00015
scoring_system epss
scoring_elements 0.03273
published_at 2026-05-14T12:55:00Z
1
value 0.00015
scoring_system epss
scoring_elements 0.0324
published_at 2026-05-12T12:55:00Z
2
value 0.00015
scoring_system epss
scoring_elements 0.03086
published_at 2026-04-02T12:55:00Z
3
value 0.00015
scoring_system epss
scoring_elements 0.031
published_at 2026-04-04T12:55:00Z
4
value 0.00015
scoring_system epss
scoring_elements 0.03101
published_at 2026-04-07T12:55:00Z
5
value 0.00015
scoring_system epss
scoring_elements 0.03105
published_at 2026-04-08T12:55:00Z
6
value 0.00015
scoring_system epss
scoring_elements 0.0313
published_at 2026-04-09T12:55:00Z
7
value 0.00015
scoring_system epss
scoring_elements 0.03093
published_at 2026-04-11T12:55:00Z
8
value 0.00015
scoring_system epss
scoring_elements 0.03069
published_at 2026-04-12T12:55:00Z
9
value 0.00015
scoring_system epss
scoring_elements 0.03057
published_at 2026-04-13T12:55:00Z
10
value 0.00015
scoring_system epss
scoring_elements 0.03033
published_at 2026-04-16T12:55:00Z
11
value 0.00015
scoring_system epss
scoring_elements 0.03042
published_at 2026-04-18T12:55:00Z
12
value 0.00015
scoring_system epss
scoring_elements 0.03162
published_at 2026-04-21T12:55:00Z
13
value 0.00015
scoring_system epss
scoring_elements 0.03165
published_at 2026-04-24T12:55:00Z
14
value 0.00015
scoring_system epss
scoring_elements 0.03158
published_at 2026-04-26T12:55:00Z
15
value 0.00015
scoring_system epss
scoring_elements 0.03206
published_at 2026-04-29T12:55:00Z
16
value 0.00015
scoring_system epss
scoring_elements 0.03169
published_at 2026-05-05T12:55:00Z
17
value 0.00015
scoring_system epss
scoring_elements 0.03194
published_at 2026-05-07T12:55:00Z
18
value 0.00015
scoring_system epss
scoring_elements 0.0323
published_at 2026-05-09T12:55:00Z
19
value 0.00015
scoring_system epss
scoring_elements 0.03234
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21989
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:19Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
aliases CVE-2026-21989
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q879-2fzs-7fha
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid