NCSC-2026-0203 [1.00] [M/H] Vulnerabilities fixed in Oracle VM VirtualBox
Oracle has fixed multiple vulnerabilities in Oracle VM VirtualBox version 7.2.8. The vulnerabilities are present in various components of Oracle VM VirtualBox 7.2.8, including Shared Folders and the VMSVGA device. An attacker with low to high privileges and access to the underlying infrastructure can create, delete, or modify data, gain unauthorized read access, crash or hang the system, and potentially gain control over the virtualization environment. The vulnerabilities affect the confidentiality, integrity, and availability of the system. Some vulnerabilities have a CVSS score of up to 7.5, while others range from low to medium.
CSIRTS triage
- What
- Multiple vulnerabilities allow an attacker to manipulate data and potentially gain control over the virtualization environment.
- Who is affected
- Deployments of Oracle VM VirtualBox version 7.2.8.
- Urgency
- Remediation is urgent due to the potential for unauthorized access and system compromise.
- Action
- Upgrade to the latest version of Oracle VM VirtualBox.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Oracle VM VirtualBox
Get an email when a new Oracle VM VirtualBox advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://advisories.ncsc.nl/advisory?id=NCSC-2026-0203
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-352750.12% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-467680.15% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 5% of all scored CVEs.
- Low exploitation riskCVE-2026-468150.16% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 6% of all scored CVEs.
- Low exploitation riskCVE-2026-468160.16% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 6% of all scored CVEs.
- Low exploitation riskCVE-2026-468250.16% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 5% of all scored CVEs.
- Low exploitation riskCVE-2026-468730.11% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 2% of all scored CVEs.
- Low exploitation riskCVE-2026-468740.13% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 3% of all scored CVEs.
- Low exploitation riskCVE-2026-468770.17% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 6% of all scored CVEs.
- Low exploitation riskCVE-2026-469740.14% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 4% of all scored CVEs.
- Low exploitation riskCVE-2026-469770.16% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 6% of all scored CVEs.
Referenced CVEs
| CVE | CSIRTS overview | External |
|---|---|---|
| CVE-2026-35275 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46768 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46815 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46816 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46825 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46873 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46874 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46877 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46974 | coverage & exploitation status | NVD · CVE.org |
| CVE-2026-46977 | coverage & exploitation status | NVD · CVE.org |
More from NCSC-NL Advisories
- unknownNCSC-2026-0223 [1.00] [M/H] Vulnerabilities fixed in BeyondTrust Remote Support and Privileged Remote Access2026-07-10
- unknownNCSC-2026-0222 [1.00] [M/H] Vulnerabilities fixed in GitLab Enterprise Edition and Community Edition2026-07-10
- unknownNCSC-2026-0221 [1.00] [M/H] Vulnerabilities fixed in UniFi products from Ubiquiti Networks2026-07-07
- unknownNCSC-2026-0220 [1.00] [M/H] Vulnerabilities fixed in Rancher by Rancher Labs2026-07-03
- unknownNCSC-2026-0219 [1.00] [M/H] Vulnerabilities fixed in GitHub Enterprise Server2026-07-03