QEMU

QEMU is a widely-used open-source virtualization platform that emulates hardware to run virtual machines. This vulnerability has a CVSS score of 8.8 and requires local access with low-level user privileges to exploit, but once compromised, it allows an attacker to achieve high-impact outcomes including confidentiality breaches, system modification, and denial of service across the virtualized environment. Security teams should monitor for patches when they become available on February 12, 2026, and assess whether their hypervisor infrastructure could be targeted by local threat actors with guest-level access.