A vulnerability marked as critical has been reported in Oracle VM VirtualBox 7.2.8 . Affected by this issue is some unknown functionality of the component Core . Performing a manipulation results in improper authorization. This vulnerability was named CVE-2026-46874 . The attack needs to be approached locally. There is no available exploit. It is suggested to upgrade the affected component.