What is CVE-2026-46768?

CVE-2026-46768 is a medium-severity vulnerability in Oracle Corporation Vm Virtualbox, classified under Improper Access Control. CVSS score: 6.0/10. Published 2026-06-17.

How severe is CVE-2026-46768?

Medium severity. CVSS v3 base score is 6.0 out of 10.

Vulnerability in Oracle Corporation Vm Virtualbox

CVE-2026-46768

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: VMSVGA device). The supported version that is affected is 7.2.8. Easily exploitable vulnerability allows high privileged attacker with logon to the in…

CVSS v3 metric

CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H.

Affected products

Oracle Corporation Vm Virtualbox — versions 7.2.8

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

secalert_us@oracle.com (vendor-advisory)

Frequently asked questions

What is CVE-2026-46768?: CVE-2026-46768 is a medium-severity vulnerability in Oracle Corporation Vm Virtualbox, classified under Improper Access Control. CVSS score: 6.0/10. Published 2026-06-17.
How severe is CVE-2026-46768?: Medium severity. CVSS v3 base score is 6.0 out of 10.