Skip to main content
ZDI-26-332 HIGH 8.8 Published Jun 09, 2026

QEMU calc_image_hostmem Integer Overflow Local Privilege Escalation Vulnerability

QEMU

This vulnerability allows local attackers to escalate privileges on affected installations of QEMU. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8.

Related CVE

CVE-2026-3886

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy