Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-m15r-872d-vkev

Summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Aliases

alias	CVE-2023-21990

Fixed_packages

url	pkg:deb/debian/virtualbox@7.0.8-dfsg-1?distro=sid
purl	pkg:deb/debian/virtualbox@7.0.8-dfsg-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.0.8-dfsg-1%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-21990

reference_id

reference_type

scores

value	0.00077
scoring_system	epss
scoring_elements	0.23049
published_at	2026-04-02T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22989
published_at	2026-04-12T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22933
published_at	2026-04-13T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22948
published_at	2026-04-16T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22942
published_at	2026-04-18T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22905
published_at	2026-04-21T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22738
published_at	2026-04-24T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22732
published_at	2026-04-26T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22727
published_at	2026-04-29T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23093
published_at	2026-04-04T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22882
published_at	2026-04-07T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22955
published_at	2026-04-08T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23007
published_at	2026-04-09T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23026
published_at	2026-04-11T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25066
published_at	2026-05-05T12:55:00Z

value	0.00144
scoring_system	epss
scoring_elements	0.34343
published_at	2026-05-14T12:55:00Z

value	0.00144
scoring_system	epss
scoring_elements	0.34276
published_at	2026-05-12T12:55:00Z

value	0.00144
scoring_system	epss
scoring_elements	0.34355
published_at	2026-05-09T12:55:00Z

value	0.00144
scoring_system	epss
scoring_elements	0.3425
published_at	2026-05-11T12:55:00Z

value	0.00144
scoring_system	epss
scoring_elements	0.34317
published_at	2026-05-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-21990

Weaknesses

Exploits

Severity_range_score 8.2 - 8.2

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m15r-872d-vkev

Vulnerability Instance