Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-3nw6-9452-6bgk

Summary Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H).

Aliases

alias	CVE-2026-21984

Fixed_packages

url	pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid

url	pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl	pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-21984

reference_id

reference_type

scores

value	0.00029
scoring_system	epss
scoring_elements	0.08318
published_at	2026-05-14T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08262
published_at	2026-05-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08113
published_at	2026-04-02T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08155
published_at	2026-04-04T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08102
published_at	2026-04-07T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08161
published_at	2026-04-08T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08183
published_at	2026-04-09T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08177
published_at	2026-04-11T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08157
published_at	2026-04-12T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0814
published_at	2026-04-13T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08046
published_at	2026-04-16T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08031
published_at	2026-04-18T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0819
published_at	2026-04-21T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08159
published_at	2026-04-24T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08124
published_at	2026-04-26T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08085
published_at	2026-04-29T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08048
published_at	2026-05-05T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08181
published_at	2026-05-07T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.0825
published_at	2026-05-09T12:55:00Z

value	0.00029
scoring_system	epss
scoring_elements	0.08234
published_at	2026-05-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-21984

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id	1126117
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117

reference_url

https://www.oracle.com/security-alerts/cpujan2026.html

reference_id

cpujan2026.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:22Z/

url

https://www.oracle.com/security-alerts/cpujan2026.html

Weaknesses

Exploits

Severity_range_score 7.5 - 7.5

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3nw6-9452-6bgk

Vulnerability Instance