Oracle · Virtualbox · CVE-2026-21955
**Name of the Vulnerable Software and Affected Versions**
Oracle VM VirtualBox versions 7.1.14 and 7.2.4
**Description**
An easily exploitable issue exists in the Oracle VM VirtualBox Core component, potentially allowing a high-privileged attacker with access to the system where Oracle VM VirtualBox runs to compromise the software. Successful exploitation can lead to a takeover of Oracle VM VirtualBox, and may significantly impact additional products.
**Recommendations**
Update Oracle VM VirtualBox version 7.1.14 to a later version.
Update Oracle VM VirtualBox version 7.2.4 to a later version.