CVE-2025-37849 | Linux Kernel up to 6.1.134/6.6.87/6.12.23/6.13.11/6.14.2 kvm_arch_vcpu_create use after free (Nessus ID 237504)
A vulnerability was found in Linux Kernel up to 6.1.134/6.6.87/6.12.23/6.13.11/6.14.2 and classified as critical. The impacted element is the function kvm_arch_vcpu_create. The manipulation results in use after free.
This vulnerability is reported as CVE-2025-37849. The attacker must have access to the local network to execute the attack. No exploit exists.
It is suggested to upgrade the affected component.