CVE-2026-27211

Cloud Hypervisor (versions 34.0–50.0) is vulnerable to arbitrary host file exfiltration when using virtio-block devices backed by raw images. A malicious guest can overwrite a disk header with a crafted QCOW2 structure pointing to a sensitive host path; on the next VM boot or disk scan, image for...