Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).
CVE-2009-2715
Severity
4.9MEDIUM
EPSS
0.2%
top 58.98%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
Timeline
PublishedAug 7
Latest updateMay 2
Description
Sun VirtualBox 2.2 through 3.0.2 r49928 allows guest OS users to cause a denial of service (Linux host OS reboot) via a sysenter instruction.
CVSS vector
AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9