Is VirtualBox 5.1.38 patched?

Oracle · cycle 5.1 · end of life · Official site ↗

5.1.385/100Critical · exploited

Current stable (7.2.10): 100/100

Minimum safe version7.0.24

5.1.38 has 112 open critical-or-high vulnerabilities. Run 7.0.24 or later to clear them. See what 7.0.24 fixes →

1 of the vulnerability affecting 5.1.38 is linked to ransomware campaigns (CISA KEV) — prioritise patching.

Health score5/100

Open issues227

Exploited now1

Cycle 5.1 EOL2018-04-30

Latest release7.2.10

Summary iPlain-English security status for VirtualBox 5.1.38, built from its CVEs, active-exploitation data, end-of-life date and latest release.

VirtualBox 5.1.38 is part of the 5.1 release line. 1 actively-exploited vulnerability affects it (CISA KEV). 1 is linked to ransomware campaigns (CISA KEV). The minimum safe version is 7.0.24 — upgrade to it or later to clear the open critical/high issues. The 5.1 line reached end-of-life on 2018-04-30, so it no longer receives security patches. The latest supported VirtualBox release is 7.2.10.

Known issues affecting 5.1.38

Exploited first, then by exploitation probability.

CVE-2019-2725 CRITICAL exploited ransomware EPSS 100% → fixed in 6.1.2 CVE-2018-0735 MEDIUM EPSS 5% → fixed in 6.0.0 CVE-2019-2511 HIGH EPSS 4% → fixed in 5.2.24 CVE-2018-5407 MEDIUM EPSS 3% → fixed in 6.0.0 CVE-2021-2279 HIGH EPSS 3% → fixed in 6.1.20 CVE-2020-2959 HIGH EPSS 3% → fixed in 6.1.6 CVE-2018-3294 CRITICAL EPSS 2% → fixed in 5.2.20 CVE-2019-2721 HIGH EPSS 2% → fixed in 6.0.6 CVE-2019-10219 MEDIUM EPSS 2% → fixed in 6.1.32 CVE-2018-3295 HIGH EPSS 2% → fixed in 5.2.20 CVE-2022-39425 HIGH EPSS 2% → fixed in 6.1.40 CVE-2024-21111 HIGH EPSS 2% → fixed in 7.0.16 CVE-2022-39424 HIGH EPSS 1% → fixed in 6.1.40 CVE-2023-21886 HIGH EPSS 1% → fixed in 7.0.6 CVE-2022-39426 HIGH EPSS 1% → fixed in 6.1.40 CVE-2019-2525 MEDIUM EPSS 1% → fixed in 5.2.24 CVE-2024-21109 MEDIUM EPSS 1% → fixed in 7.0.16 CVE-2021-2119 MEDIUM EPSS 1% → fixed in 6.1.18 CVE-2020-2909 LOW EPSS 1% → fixed in 6.1.6 CVE-2021-2250 HIGH EPSS 1% → fixed in 6.1.20

Other VirtualBox versions

Check another release line of VirtualBox.

VirtualBox 7.2.10 VirtualBox 7.1.18 VirtualBox 7.0.26 VirtualBox 6.1.50 VirtualBox 6.0.24 VirtualBox 5.2.44 VirtualBox 5.0.40 VirtualBox 4.3.40 VirtualBox 4.2.38 VirtualBox 4.1.44 VirtualBox 4.0.36

Frequently asked

Is VirtualBox 5.1.38 patched?

No — 1 actively-exploited vulnerability affects VirtualBox 5.1.38. Upgrade to at least 7.0.24.

What version should I upgrade VirtualBox 5.1.38 to?

Upgrade VirtualBox 5.1.38 to at least 7.0.24 to clear its 112 open critical-or-high vulnerabilities.

When does VirtualBox 5.1 reach end-of-life?

VirtualBox 5.1 reached end-of-life on 2018-04-30 and no longer receives security patches.

What is the latest version of VirtualBox?

The latest supported VirtualBox release is 7.2.10.

Is VirtualBox 5.1.38 still receiving security updates?

No — VirtualBox 5.1.38 is on the 5.1 line, which reached end-of-life on 2018-04-30 and no longer receives security updates. Upgrade to 7.2.10 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Oracle's official advisory before you patch or upgrade — VirtualBox official site ↗