CVE-2026-3196: Integer Overflow or Wraparound
CVE-2026-3196 is an integer overflow vulnerability in the virtio-snd device triggered via PCM_INFO requests from a guest. A malicious guest can send out-of-bounds stream counts, potentially causing unbounded memory allocation on the host and resulting in a denial of service. The vulnerability affects version 8.2.0. No official patch or remediation guidance is currently provided by the vendor.
AI Analysis
Technical Summary
An integer overflow or wraparound vulnerability exists in the virtio-snd device when processing PCM_INFO requests from a guest virtual machine. By supplying out-of-bounds stream counts, a malicious guest can cause the host to allocate memory without proper bounds, potentially leading to a denial of service condition. This vulnerability is identified as CVE-2026-3196 and affects version 8.2.0 of the affected software. The CVSS v3.1 base score is 5.5 (medium severity), with attack vector local, low attack complexity, low privileges required, no user interaction, unchanged scope, no confidentiality or integrity impact, and high availability impact. The vendor advisory from Red Hat does not currently specify a patch or remediation level.
Potential Impact
The vulnerability allows a local attacker with privileges on a guest virtual machine to cause unbounded memory allocation on the host system by exploiting an integer overflow in the virtio-snd device. This can lead to a denial of service condition on the host, impacting availability. There is no impact on confidentiality or integrity according to the CVSS vector.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-3196 for current remediation guidance. Until an official fix is available, consider restricting untrusted guest access or applying any vendor-recommended temporary mitigations if provided.
CVE-2026-3196: Integer Overflow or Wraparound
Description
CVE-2026-3196 is an integer overflow vulnerability in the virtio-snd device triggered via PCM_INFO requests from a guest. A malicious guest can send out-of-bounds stream counts, potentially causing unbounded memory allocation on the host and resulting in a denial of service. The vulnerability affects version 8.2.0. No official patch or remediation guidance is currently provided by the vendor.
CVSS v3.1
Score 5.5medium
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
An integer overflow or wraparound vulnerability exists in the virtio-snd device when processing PCM_INFO requests from a guest virtual machine. By supplying out-of-bounds stream counts, a malicious guest can cause the host to allocate memory without proper bounds, potentially leading to a denial of service condition. This vulnerability is identified as CVE-2026-3196 and affects version 8.2.0 of the affected software. The CVSS v3.1 base score is 5.5 (medium severity), with attack vector local, low attack complexity, low privileges required, no user interaction, unchanged scope, no confidentiality or integrity impact, and high availability impact. The vendor advisory from Red Hat does not currently specify a patch or remediation level.
Potential Impact
The vulnerability allows a local attacker with privileges on a guest virtual machine to cause unbounded memory allocation on the host system by exploiting an integer overflow in the virtio-snd device. This can lead to a denial of service condition on the host, impacting availability. There is no impact on confidentiality or integrity according to the CVSS vector.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2026-3196 for current remediation guidance. Until an official fix is available, consider restricting untrusted guest access or applying any vendor-recommended temporary mitigations if provided.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- fedora
- Date Reserved
- 2026-02-25T11:09:37.726Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
- Vendor Advisory Urls
- [{"url":"https://access.redhat.com/security/cve/CVE-2026-3196","vendor":"Red Hat"}]
Threat ID: 6a3576cef198dc38c1c38eab
Added to database: 6/19/2026, 5:05:18 PM
Last enriched: 6/19/2026, 5:20:54 PM
Last updated: 6/19/2026, 6:06:11 PM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.