CVE-2026-5164
Virtio-win: virtio-win: denial of service via unvalidated descriptor count in unmap request
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.7EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
30 Mar 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in virtio-win. The `RhelDoUnMap()` function does not properly validate the number of descriptors provided by a user during an unmap request. A local user could exploit this input validation vulnerability by supplying an excessive number of descriptors, leading to a buffer overrun. This can cause a system crash, resulting in a Denial of Service (DoS).
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H