<!-SC_OFF --><div class="md"><p>Hyunwoo Kim (@v4bel) dropped a use-after-free in Linux KVM&#39;s shadow MMU that triggers from inside a guest VM on both Intel and AMD. First publicly docu…
| CVE ID | CVE-2026-53359 |
| Vendor | reddit_cyber |
| Affected Product | Threat Intelligence |
| Vulnerability Type | Zero-Day Exploit |
| CVSS Score | 8.0 (HIGH) |
| Actively Exploited | ✅ Yes |
| Patch Status | See Vendor Advisory → |
| Reported By | CYBERDUDEBIVASH SENTINEL APEX Intelligence (via reddit_cyber) |
<!-- SC_OFF --><div class="md"><p>Hyunwoo Kim (@v4bel) dropped a use-after-free in Linux KVM&#39;s shadow MMU that triggers from inside a guest VM on both Intel and AMD. First publicly documented KVM escape that works cross-architecture.</p> <p><strong>Key points</strong>:<br/> - Bug has been in the kernel since August 2010 (commit 2032a93d66fa)<br/> - Triggered entirely from guest-side..no hypervisor or host user interaction needed<br/> - Lives in <strong>in-kernel KVM</strong>, not QEMU, fires independently of the emulation stack, meaning cloud providers with custom virt stacks are also in scope<br/> - Current PoC causes a host kernel panic (DoS). Full RCE escape exists but is not being released
Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.