System	Score	Found at
epss	0.00116	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00116	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00116	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00116	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
epss	0.00119	https://api.first.org/data/v1/epss?cve=CVE-2019-3026
cvssv2	2.1	https://nvd.nist.gov/vuln/detail/CVE-2019-3026
cvssv3.1	6.5	https://nvd.nist.gov/vuln/detail/CVE-2019-3026
ssvc	Track	https://security.gentoo.org/glsa/202004-02
ssvc	Track	https://security.gentoo.org/glsa/202101-09
ssvc	Track	https://www.zerodayinitiative.com/advisories/ZDI-19-917/
ssvc	Track	http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2019-3026
		https://www.zerodayinitiative.com/advisories/ZDI-19-917/
		http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html
cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
CVE-2019-3026		https://nvd.nist.gov/vuln/detail/CVE-2019-3026
GLSA-202004-02		https://security.gentoo.org/glsa/202004-02
GLSA-202101-09		https://security.gentoo.org/glsa/202101-09

No exploits are available.

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2019-3026

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2019-3026

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:08Z/ Found at https://security.gentoo.org/glsa/202004-02

---

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:08Z/ Found at https://security.gentoo.org/glsa/202101-09

---

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:08Z/ Found at https://www.zerodayinitiative.com/advisories/ZDI-19-917/

---

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:13:08Z/ Found at http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

---

Percentile	0.30189
EPSS Score	0.00116
Published At	April 21, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:00:31.438156+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/202004-02	38.0.0