VYPR
Medium severity6.5NVD Advisory· Published Feb 18, 2026· Updated Apr 15, 2026

CVE-2026-0665

CVE-2026-0665

Description

An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw to trigger out-of-bounds heap accesses in the QEMU process via the emulated Xen physdev hypercall interface, leading to a denial of service or potential memory corruption.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.