PT-2025-29668 · Oracle+2 · Virtualbox+2
Published
2025-07-15
·
Updated
2025-10-01
·
CVE-2025-53029
CVSS v3.1
2.3
Low
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle VM VirtualBox version 7.1.10
Description
An easily exploitable issue exists in the Oracle VM VirtualBox Core component that allows a high-privileged attacker with logon access to the infrastructure where Oracle VM VirtualBox executes to gain unauthorized read access to a subset of Oracle VM VirtualBox data.
Recommendations
Update Oracle VM VirtualBox to a newer version that resolves this issue.
Fix
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Virtualbox
Red Os