AI description
CVE-2025-62641 is a vulnerability in Oracle VM VirtualBox, specifically affecting versions 7.1.12 and 7.2.2. It exists within the Core component of the Oracle Virtualization product. The vulnerability can be easily exploited by a highly privileged attacker who has logon access to the infrastructure where Oracle VM VirtualBox is running. Successful exploitation of this vulnerability could allow an attacker to take over Oracle VM VirtualBox.
- Description
- Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
- Source
- secalert_us@oracle.com
- NVD status
- Analyzed
- Products
- vm_virtualbox
CVSS 3.1
- Type
- Secondary
- Base score
- 8.2
- Impact score
- 6
- Exploitability score
- 1.5
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-267
- Hype score
- Not currently trending
⚠️ Finally, CVE-2025-62641 exploit is ready, and available on our Telegram channel Link: https://t.co/feGp7f2ZFv… 👑 By Lord0x | LordWare https://t.co/vMiioFBA7C
@Al_Lord0x
13 Nov 2025
21 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[ZDI-25-961|CVE-2025-62641] Oracle VirtualBox USB Use-After-Free Local Privilege Escalation Vulnerability (CVSS 8.2; Credit: VMBreakers(SANGBIN KIM, GANGMIN KIM, Un3xploitable)) https://t.co/OlnCrSb1MM
@TheZDIBugs
27 Oct 2025
1310 Impressions
3 Retweets
10 Likes
3 Bookmarks
0 Replies
0 Quotes
VirtualBox CVE-2025-62641 취약점 공개 및 업데이트 https://t.co/eUm4gPTCz7 #VirtualBox #버추얼박스
@sakaijjang
27 Oct 2025
43 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
تنبيه هام 🚨 ثغرة امنية CVE-2025-62641 في برنامج Oracle VM VirtualBox الاصدارات المتأثرة 7.1.12 + 7.2.2 https://t.co/wW79eYCMFC https://t.co/pBlULLQud3
@ed3scom
23 Oct 2025
91 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 تحذير أمني — ثغرة خطيرة في Oracle VM VirtualBox (CVE-2025-62641) شركة Oracle أصدروا تحذير عن ثغرة خطرة في VirtualBox (component: Core) برقم CVE-2025-62641 (CVSS: 8.2). #Cyber_Hunter https://t.co/mwzenK8dWp
@CyberHunter_Gp
23 Oct 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
🚨CVE-2025-62641: Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.12 and 7.2.2. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where htt
@DarkWebInformer
22 Oct 2025
63422 Impressions
146 Retweets
791 Likes
245 Bookmarks
9 Replies
9 Quotes
**CVE-2025-62641** pertains to a security flaw in **Oracle VM VirtualBox** versions **7.1.12** and **7.2.2**. The vulnerability resides within the **Core** component of VirtualBox, which is responsible for managing virtual machines and their underlying operations. #Cybersecurity
@CveTodo
21 Oct 2025
52 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:vm_virtualbox:7.1.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0846C94-6984-4E7F-9670-E5238AA8CA5F"
},
{
"criteria": "cpe:2.3:a:oracle:vm_virtualbox:7.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "613B5554-B57C-4AF9-AC10-E96278C44FC4"
}
],
"operator": "OR"
}
]
}
]