CVE-2022-39425

HIGH

Oracle VM VirtualBox < 6.1.40 - Unauthenticated Remote Code Execution via VRDP

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-39425. PoCs published by bob11vrdp.

AI-analyzed exploit summary The repository contains only the VirtualBox source code and documentation files without any exploit code or technical analysis related to CVE-2022-39425. The README.md is minimal and does not provide any meaningful details about the vulnerability or exploit.

Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 6.1.40. Difficult to exploit vulnerability allows unauthenticated attacker with network access via VRDP to compromise Oracle VM VirtualBox. Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).

Exploits (1)

nomisec STUB 3 stars
by bob11vrdp · poc
https://github.com/bob11vrdp/CVE-2022-39425

The repository contains only the VirtualBox source code and documentation files without any exploit code or technical analysis related to CVE-2022-39425. The README.md is minimal and does not provide any meaningful details about the vulnerability or exploit.

Classification
Stub 90%
Attack Type
Other
Complexity
N/a
Reliability
N/a
Target: VirtualBox
No auth needed
mistral-large-3 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory vendor-advisory
https://security.gentoo.org/glsa/202212-03

Scores

CVSS v3 8.1
EPSS 0.0163
EPSS Percentile 73.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-306
Status published
Products (1)
oracle/vm_virtualbox < 6.1.40
Published Oct 18, 2022
Tracked Since Feb 18, 2026