CVE-2008-3431 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2008-3431

Oracle | VirtualBoxAdded 2022-03-03Remediation Deadline 2022-03-24

Oracle VirtualBox Insufficient Input Validation Vulnerability

An input validation vulnerability exists in the VBoxDrv.sys driver of Sun xVM VirtualBox which allows attackers to locally execute arbitrary code.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-264

References

https://nvd.nist.gov/vuln/detail/CVE-2008-3431