A vulnerability, which was classified as critical , was found in Oracle VM VirtualBox 7.2.8 . This vulnerability affects unknown code of the component VMSVGA Device . The manipulation results in Local Privilege Escalation. This vulnerability is cataloged as CVE-2026-46873 . The attack must be initiated from a local position. There is no exploit available. You should upgrade the affected component.