Primary

Context

Oracle VM VirtualBox Core Vulnerability Allowing Privileged Data Manipulation and Partial Denial-of-Service

Vulnerability

A vulnerability exists in Oracle VM VirtualBox in the Core component, affecting versions prior to 7.0.24 and prior to 7.1.6. This vulnerability allows a high-privileged attacker with access to the environment where Oracle VM VirtualBox runs to compromise the application. Exploitation could lead to unauthorized creation, deletion, or modification of critical data, access to a subset of Oracle VM VirtualBox data, and a partial denial-of-service.

Impact

Successful exploitation could result in unauthorized changes to critical data or any data accessible by Oracle VM VirtualBox, unauthorized read access to some Oracle VM VirtualBox data, and a partial denial-of-service condition in Oracle VM VirtualBox.

Remediation

Users are advised to update to Oracle VM VirtualBox versions 7.0.24 or 7.1.6.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.8

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.8

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle VM VirtualBox Core Vulnerability Allowing Privileged Data Manipulation and Partial Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Oracle VM VirtualBox

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating