CVE-2026-23425 | Linux Kernel up to 6.18.16/6.19.6/7.0-rc1 KVM pkvm_init_features_from_host initialization

Inserito da Angelo Barbosa | Apr 3, 2026 | CVE

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.18.16/6.19.6/7.0-rc1. The affected element is the function pkvm_init_features_from_host of the component KVM. The manipulation leads to improper initialization.

This vulnerability is uniquely identified as CVE-2026-23425. The attack can only be initiated within the local network. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-23425 | Linux Kernel up to 6.18.16/6.19.6/7.0-rc1 KVM pkvm_init_features_from_host initialization

Post correlati

CVE-2024-32700 | Kognetiks Chatbot Plugin up to 2.0.0 on WordPress unrestricted upload

CVE-2025-64701 | QualitySoft QND Standard/QND Advance/QND Premium up to 11.0.9i privilege chaining

CVE-2024-41776 | IBM Cognos Controller 11.0.0/11.0.1 cross-site request forgery

CVE-2025-11220 | Elementor Plugin up to 3.33.3 on WordPress Text Path Widget cross site scripting