A 16-year-old Linux kernel vulnerability, dubbed Januscape, allows attackers to escape a virtual machine and execute arbitrary code on the host. According to Hyunwoo Kim, the security researcher who discovered it, this guest-to-host escape flaw (tracked as CVE-2026-53359) stems from a use-after-free weakness in the shadow MMU emulation of KVM/x86, the kernel-based virtual machine built for x86 and x86_64 (AMD64) processor architectures. Januscape has been present in the Linux kernel for approximately 16 years before being patched in June 2026, and was used as a zero-day exploit in Google's kvmCTF vulnerability reward program (VRP). Successful exploitation allows attackers with root access inside a guest virtual machine (the default configuration on public cloud instances) to execute code as root on the host and take over all guests running on it or crash the host kernel (knocking every other tenant's virtual machine on the same server offline). Kim described Januscape as the first guest-to-host exploit that can be triggered on both Intel and AMD processor architectures, rather than being limited to a single platform, and noted that it poses a distinct risk to multi-tenant public cloud environments, such as those offered by Google Cloud and Amazon Web Services. "With guest-side actions alone, an attacker can compromise the host that runs their VM," Kim explained on Monday. "For example, an attacker who has rented just a single instance on a public cloud could panic the host kernel to take down every other tenant VM on the same physical machine (DoS), or run code with root privilege on the host to take over the host and all the guests on it (RCE)." On some Linux distros, such as Red Hat Enterprise Linux (RHEL), where /dev/kvm is world-writable, unprivileged attackers can also exploit CVE-2026-53359 to reliably gain root permissions on unpatched devices. Januscape demo (Hyunwoo Kim) The security researcher published a technical write-up and a proof-of-concept exploit that can trigger a host kernel panic, and said that a full guest-to-host escape exploit will not be released for the foreseeable future. Administrators running KVM/x86 hosts that accept multi-tenant guests should confirm that patch commit 81ccda30b4e8 has been applied to the host kernel to ensure the hosts are secure against attacks.
| Vendor | Product | Versions |
|---|---|---|
| linux | linux kernel | 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2032a93d66fa282ba0f2ea9152eeff9511fa9a96, 2.6.36, 6.1.176, 6.6.143, 6.12.94, 6.18.37, 7.1.2, 81ccda30b4e8 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| debian | debian linux | cert_advisory | 90% |
| linux | linux | mitre_affected | 90% |
| open source | open source linux kernel | cert_advisory | 90% |
Updated description with more technical detail, specified patch commit 81ccda30b4e8, and added new relevant tags.
Updated description with detailed technical information and added new tags related to Intel, AMD, and public cloud vulnerabilities.
Updated description with detailed technical information about the Januscape vulnerability and added new affected version and tags.
Updated description with new technical details, added CVE-2026-53359, and included a new CWE.
Updated description with new technical details, changed product to KVM/x86, updated severity to HIGH, added CWE-416, and marked the vulnerability as actively exploited with an exploit available.
Updated description with critical severity and new affected versions up to 7.1.2.
Initial creation