Exploit for #VU49870 Improper input validation in Oracle VM VirtualBox

Cybersecurity Help s.r.o.

Published: 2021-09-21

Vulnerability identifier: #VU49870

Vulnerability risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2021-2119

CWE-ID: CWE-20

Exploitation vector: Local

Exploits in database: 1

September 21, 2021
- RWCTF21-VirtualBox-61-escape (0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020/2021 CVE-2021-2119) [Github]

Vulnerable software:
Oracle VM VirtualBox
Server applications / Virtualization software

Vendor: Oracle