VulnerableCode Package Details - pkg:deb/debian/virtualbox@7.2.4-dfsg-1?distro=sid

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/virtualbox@7.2.4-dfsg-1?distro=sid

Essentials
History (27)

purl	pkg:deb/debian/virtualbox@7.2.4-dfsg-1?distro=sid

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (9)

Vulnerability	Summary	Aliases
VCID-1cq9-n8ju-wqay	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).	CVE-2025-62591
VCID-3mbm-tn7y-abg5	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N).	CVE-2025-61759
VCID-6dww-g6vm-uqar	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 7.5 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H).	CVE-2025-61760
VCID-9v12-3puz-dfee	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).	CVE-2025-62641
VCID-a99c-5ky1-jbhm	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).	CVE-2025-62588
VCID-c2nv-y5d9-6kbn	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).	CVE-2025-62587
VCID-frtc-w4gw-pugj	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).	CVE-2025-62590
VCID-magw-e9kz-yqex	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).	CVE-2025-62589
VCID-qsck-8nxx-zqbb	Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).	CVE-2025-62592

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:11:14.728197+00:00	Debian Importer	Fixing	VCID-c2nv-y5d9-6kbn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:10:19.916932+00:00	Debian Importer	Fixing	VCID-9v12-3puz-dfee	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:50:50.409536+00:00	Debian Importer	Fixing	VCID-qsck-8nxx-zqbb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:38:05.859429+00:00	Debian Importer	Fixing	VCID-1cq9-n8ju-wqay	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:20:59.662418+00:00	Debian Importer	Fixing	VCID-a99c-5ky1-jbhm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:43:35.747328+00:00	Debian Importer	Fixing	VCID-6dww-g6vm-uqar	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:39:01.934579+00:00	Debian Importer	Fixing	VCID-magw-e9kz-yqex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:26:06.013795+00:00	Debian Importer	Fixing	VCID-3mbm-tn7y-abg5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:56:54.634490+00:00	Debian Importer	Fixing	VCID-frtc-w4gw-pugj	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:36:17.757077+00:00	Debian Importer	Fixing	VCID-c2nv-y5d9-6kbn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:35:36.123443+00:00	Debian Importer	Fixing	VCID-9v12-3puz-dfee	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:20:39.346036+00:00	Debian Importer	Fixing	VCID-qsck-8nxx-zqbb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:11:20.122915+00:00	Debian Importer	Fixing	VCID-1cq9-n8ju-wqay	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:58:10.724221+00:00	Debian Importer	Fixing	VCID-a99c-5ky1-jbhm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:29:26.759939+00:00	Debian Importer	Fixing	VCID-6dww-g6vm-uqar	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:25:21.659371+00:00	Debian Importer	Fixing	VCID-magw-e9kz-yqex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:17:47.251771+00:00	Debian Importer	Fixing	VCID-3mbm-tn7y-abg5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:00:19.253836+00:00	Debian Importer	Fixing	VCID-frtc-w4gw-pugj	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:56:15.958004+00:00	Debian Importer	Fixing	VCID-9v12-3puz-dfee	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.934605+00:00	Debian Importer	Fixing	VCID-qsck-8nxx-zqbb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.911262+00:00	Debian Importer	Fixing	VCID-1cq9-n8ju-wqay	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.888242+00:00	Debian Importer	Fixing	VCID-frtc-w4gw-pugj	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.864976+00:00	Debian Importer	Fixing	VCID-magw-e9kz-yqex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.841479+00:00	Debian Importer	Fixing	VCID-a99c-5ky1-jbhm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.817335+00:00	Debian Importer	Fixing	VCID-c2nv-y5d9-6kbn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.793336+00:00	Debian Importer	Fixing	VCID-6dww-g6vm-uqar	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:56:15.770024+00:00	Debian Importer	Fixing	VCID-3mbm-tn7y-abg5	https://security-tracker.debian.org/tracker/data/json	38.1.0