ZDI-26-306: Oracle VirtualBox SoundBlaster 16 Race Condition Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The
ORIGINAL SOURCE →via Zero Day Initiative
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] CVE-2026-7319 - elinsky execution-system-mcp add_action Tool server.py _get_context_file_path path traversal
- [CYBER] CVE-2026-7318 - elie mcp-project research_server.py search_papers path traversal
- [CYBER] CVE-2026-7317 - Grav CMS Cache Value FileCache.php doGet deserialization
- [CYBER] CVE-2026-7316 - eiliyaabedini aider-mcp code_with_ai aider_mcp.py command injection
- [CYBER] CVE-2026-7315 - eiceblue spire-pdf-mcp-server PDF File server.py get_pdf_path path traversal
- [CYBER] CVE-2026-7314 - eiceblue spire-doc-mcp-server base.py get_doc_path path traversal