vulnerability
Arch Linux: Information disclosure (CVE-2021-35545)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:N/C:P/I:N/A:C) | Oct 20, 2021 | Jul 11, 2025 | Mar 25, 2026 |
Severity
6
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:C)
Published
Oct 20, 2021
Added
Jul 11, 2025
Modified
Mar 25, 2026
Description
A security issue has been found in Oracle VM VirtualBox before version 6.1.28. An easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox and unauthorized read access to a subset of Oracle VM VirtualBox accessible data.
Solution
arch-linux-upgrade-latest
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.