PT-2025-43000 · Oracle+1 · Virtualbox+1
Published
2025-10-21
·
Updated
2025-12-16
·
CVE-2025-62588
CVSS v3.1
8.2
High
| Vector | AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Oracle VM VirtualBox versions 7.1.12 and 7.2.2
Description
An easily exploitable issue exists in the Oracle VM VirtualBox Core component of Oracle Virtualization. A high-privileged attacker with access to the system where Oracle VM VirtualBox runs can compromise the software. Successful exploitation can lead to a complete takeover of Oracle VM VirtualBox and may significantly impact other products.
Recommendations
Update Oracle VM VirtualBox to a version later than 7.1.12.
Update Oracle VM VirtualBox to a version later than 7.2.2.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Virtualbox
Red Os