How severe is CVE-2017-3290?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.9 out of 10.

What type of vulnerability is CVE-2017-3290?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2017-3290 - HIGH Severity | CVSS 7.9

Vulnerability Description

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Shared Folder). Supported versions that are affected are VirtualBox prior to 5.0.32 and prior to 5.1.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. CVSS v3.0 Base Score 7.9 (Integrity and Availability impacts).

Related Vulnerabilities

CVE-2016-5563

HIGH

CVSS:7.9(High)

Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5.4.0.0 through 5.4.3.0, 5.5.0.0, and 5.5.1.0 allows remote administrators to...

NVD-CWE-Other2016

CVE-2017-3559

HIGH

CVSS:7.9(High)

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vu...

NVD-CWE-Other2017

CVE-2017-3565

HIGH

CVSS:7.9(High)

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: RBAC). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileg...

NVD-CWE-Other2017

CVE-2017-3575

HIGH

CVSS:7.9(High)

NVD-CWE-Other2017

CVE-2019-20652

HIGH

CVSS:7.9(High)

NETGEAR WAC505 devices before 8.2.1.16 are affected by disclosure of sensitive information.

NVD-CWE-Other2019

CVE-2019-4383

HIGH

CVSS:7.9(High)

When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle or MongoDB databases, a redirected restore operation may result in an escalation of user privileges. IBM X-Force ID: 1...

NVD-CWE-Other2019