Question 1

What is CVE-2008-3431 — Oracle VirtualBox Insufficient Input Validation Vulnerability?

Accepted Answer

An input validation vulnerability exists in the VBoxDrv.sys driver of Sun xVM VirtualBox which allows attackers to locally execute arbitrary code.

Question 2

What is the authoritative source for CVE-2008-3431?

Accepted Answer

Oracle VirtualBox Insufficient Input Validation Vulnerability (CVE-2008-3431) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2008-3431Oracle VirtualBox Insufficient Input Validation Vulnerability

Description

Scoring

CISA KEV entry

(incoming)1

Related by meaning· 6