cve 2025 12748

A newly cataloged libvirt vulnerability, tracked as CVE‑2025‑12748, lets a low‑privileged user submit specially crafted XML that is parsed before access controls are applied — triggering uncontrolled memory allocations and crashing the libvirt process on the host, producing a denial‑of‑service...