[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:16-year-old-linux-kvm-flaw-lets-guest-vms-escape-to-host-on-intel-and-amd-x86-sy-mr9w0xvy":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":13,"action_required":19,"article_ids":20,"ioc_summary":22,"source_urls":23,"status":25,"expires_at":26,"created_at":27,"updated_at":28,"articles":29},"28808bbd-4d08-4714-bae5-7003c9ebc370","16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems","16-year-old-linux-kvm-flaw-lets-guest-vms-escape-to-host-on-intel-and-amd-x86-sy-mr9w0xvy","A 16-year-old use-after-free vulnerability in Linux KVM (CVE-2026-53359) allows guest VMs to escape to the host kernel and potentially achieve full code execution on Intel and AMD x86 systems. Exploitation requires root inside the guest and nested virtualization enabled. An unreleased exploit reportedly enables RCE on the host; a public PoC only triggers panics.","critical","advisory",[12],"CVE-2026-53359",[14,15,16,17,18],"KVM","Intel","AMD","Linux","kvmCTF","Identify all Linux KVM hosts with nested virtualization enabled. Disable nested virtualization on hosts where not required. Apply Linux kernel patches immediately when available. Monitor host kernel logs for KVM shadow-page state corruption or unexpected panics from guest activity.",[21],"5c816d02-5252-4d6f-8f7e-3cb1fca6b05c",null,[24],"https:\u002F\u002Fthehackernews.com\u002F2026\u002F07\u002F16-year-old-linux-kvm-flaw-lets-guest.html","active","2026-07-09T00:05:17.971+00:00","2026-07-07T00:05:20.467948+00:00","2026-07-07T00:10:09.198536+00:00",[30],{"id":21,"title":6,"url":24}]