CVE-2026-46131
Published May 28, 2026
Modified May 28, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: check for nEPT/nNPT in slow flush hypercalls Checking is_guest_mode(vcpu) is incorrect, because translate_nested_gpa() is only valid if an L2 guest is running *with nested EPT/NPT enabled*. Instead use the same condition as translate_nested_gpa() itself.
Is your site exposed to CVE-2026-46131?
Run a free security scan — no signup, results in seconds.
EPSS — Exploit Prediction
0.0018
Probability of exploitation
0.07%
Percentile rank
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
References
Other References
https://git.kernel.org/stable/c/45fc766bc756ff1d66f8ca026a9c4f7f764adfae
https://git.kernel.org/stable/c/464af6fc2b1dcc74005b7f58ee3812b17777efee
https://git.kernel.org/stable/c/4c7f8436b19a2a3acc0cb6b6e3becd6796ae5c57
https://git.kernel.org/stable/c/971f17f5d91045404e3914029ea57c3da90179a4
https://git.kernel.org/stable/c/d6f4e217d663ede5becc2fd6cb612c749677387b
Frequently Asked Questions
What is CVE-2026-46131? +
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: check for nEPT/nNPT in slow flush hypercalls
Checking is_guest_mode(vcpu) is incorrect, because translate_nested_gpa()
is only valid if an L2 guest is running *with nested EPT/NPT enabled*.
Instead use the same condition as translate_nested_gpa() itself.
How do I check if I'm vulnerable to CVE-2026-46131? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.