DigiNews

Tech Watch by Johan Denoyer

← Back to articles

Januscape: Guest-to-Host Escape in KVM/x86 [CVE-2026-53359]

Quality: 8/10 Relevance: 9/10

Summary

Januscape documents a KVM guest-to-host escape vulnerability (CVE-2026-53359) in KVM/x86. It describes a use-after-free in the shadow MMU emulation that can be triggered from the guest to panic or compromise the host, notes historical context including its use in a Google kvmCTF, and provides PoC usage and an outline of affected versions and disclosure details.

🚀 Service construit par Johan Denoyer