Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-2f6u-9ns4-s3bx
SummaryVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).
Aliases
0
alias CVE-2026-21985
Fixed_packages
0
url pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-1%3Fdistro=sid
1
url pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-3.2%3Fdistro=sid
2
url pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
purl pkg:deb/debian/virtualbox@7.2.6-dfsg-4?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.6-dfsg-4%3Fdistro=sid
3
url pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
purl pkg:deb/debian/virtualbox@7.2.8-dfsg-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/virtualbox@7.2.8-dfsg-1%3Fdistro=sid
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-21985
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.06372
published_at 2026-05-14T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.0636
published_at 2026-05-12T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.05891
published_at 2026-04-02T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.05925
published_at 2026-04-04T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.05914
published_at 2026-04-07T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.05952
published_at 2026-04-08T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.05992
published_at 2026-04-09T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05973
published_at 2026-04-11T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05964
published_at 2026-04-12T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.05954
published_at 2026-04-13T12:55:00Z
10
value 0.00022
scoring_system epss
scoring_elements 0.0592
published_at 2026-04-16T12:55:00Z
11
value 0.00022
scoring_system epss
scoring_elements 0.05931
published_at 2026-04-18T12:55:00Z
12
value 0.00022
scoring_system epss
scoring_elements 0.06082
published_at 2026-04-21T12:55:00Z
13
value 0.00022
scoring_system epss
scoring_elements 0.06104
published_at 2026-04-24T12:55:00Z
14
value 0.00022
scoring_system epss
scoring_elements 0.06133
published_at 2026-04-26T12:55:00Z
15
value 0.00022
scoring_system epss
scoring_elements 0.06141
published_at 2026-04-29T12:55:00Z
16
value 0.00022
scoring_system epss
scoring_elements 0.06163
published_at 2026-05-05T12:55:00Z
17
value 0.00022
scoring_system epss
scoring_elements 0.06263
published_at 2026-05-07T12:55:00Z
18
value 0.00022
scoring_system epss
scoring_elements 0.06337
published_at 2026-05-09T12:55:00Z
19
value 0.00022
scoring_system epss
scoring_elements 0.06352
published_at 2026-05-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-21985
1
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
reference_id 1126117
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126117
2
reference_url https://www.oracle.com/security-alerts/cpujan2026.html
reference_id cpujan2026.html
reference_type
scores
0
value 6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T18:56:39Z/
url https://www.oracle.com/security-alerts/cpujan2026.html
Weaknesses
Exploits
Severity_range_score6.0 - 6.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-2f6u-9ns4-s3bx