PT-2026-49981 · Oracle · Virtualbox

Publicado

2026-06-16

Atualizado

2026-06-16

CVE-2026-46873

CVSS v3.1

7.5

Alta

Vetor

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: VMSVGA device). The supported version that is affected is 7.2.8. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H).

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2026-46873

Produtos afetados

Virtualbox

PT-2026-49981 · Oracle · Virtualbox

CVE-2026-46873

Identificadores relacionados

Produtos afetados

Referências · 1