CVE-2018-2698

HIGH

Oracle VM VirtualBox <5.1.32-5.2.6 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-2698. PoCs published by SecuriTeam.

AI-analyzed exploit summary This is a detailed technical writeup describing two guest-to-host escape vulnerabilities in Oracle VirtualBox (CVE-2018-2698). The vulnerabilities involve out-of-bounds read/write primitives in the VBVA subcomponent, allowing arbitrary memory operations via guest-controlled VRAM offsets.

Description

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.1.32 and Prior to 5.2.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).

Exploits (1)

exploitdb WRITEUP

by SecuriTeam · localmultiple

https://www.exploit-db.com/exploits/43878

View Code ZIP pw:eip

This is a detailed technical writeup describing two guest-to-host escape vulnerabilities in Oracle VirtualBox (CVE-2018-2698). The vulnerabilities involve out-of-bounds read/write primitives in the VBVA subcomponent, allowing arbitrary memory operations via guest-controlled VRAM offsets.

Classification

Writeup 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Theoretical

Target: Oracle VirtualBox versions 5.1.30 and 5.2-rc1

No auth needed

Prerequisites: Guest VM access · Ability to issue VDMA commands

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/102688

Patch, Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1040202

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43878/

Scores

CVSS v3 8.8

EPSS 0.0169

EPSS Percentile 74.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

Status published

Products (1)

oracle/vm_virtualbox 5.1.0 - 5.1.32

Published Jan 18, 2018

Tracked Since Feb 18, 2026