Oracle VM VirtualBox Core Component Vulnerability Allowing Data Access

Vulnerability

A vulnerability has been identified in the Oracle VM VirtualBox product, specifically in the core component, affecting versions 7.1.14 and 7.2.4. This easily exploitable vulnerability allows a high-privileged attacker with logon access to the infrastructure where Oracle VM VirtualBox runs to compromise the application. While the vulnerability resides within Oracle VM VirtualBox, successful exploitation could significantly impact additional products, leading to a scope change. Exploitation of this vulnerability could result in unauthorized access to critical data or complete access to all data accessible through Oracle VM VirtualBox.

Impact

Exploitation of this vulnerability could lead to unauthorized access to critical data or complete access to all data accessible through Oracle VM VirtualBox.

Added: Jan 20, 2026, 11:50 PM

Updated: Jan 20, 2026, 11:50 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.3

exploitability

2.8

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.3

exploitability

2.8

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle VM VirtualBox Core Component Vulnerability Allowing Data Access

Vulnerability

Impact

Affected Products

Oracle VM VirtualBox

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating