Xen 安全漏洞

🗓️ 25 Aug 2021 00:00:00Reported by China National Vulnerability Database of Information SecurityType

cnnvd

cnnvd🔗 www.cnnvd.org.cn👁 2 Views

Xen vulnerability lets a Dom0less DomU attacker trigger an error and deny service on the host.

Reporter	Title	Published	Views	Family All 65
ATTACKERKB	CVE-2021-28700	27 Aug 202119:15	–	attackerkb
AlpineLinux	CVE-2021-28700	27 Aug 202119:15	–	alpinelinux
BDU FSTEC	The vulnerability of the dom0less Xen hypervisor function, allowing a attacker to trigger a service failure	14 Apr 202200:00	–	bdu_fstec
Circl	CVE-2021-28700	27 Aug 202122:28	–	circl
CVE	CVE-2021-28700	27 Aug 202118:15	–	cve
Cvelist	CVE-2021-28700	27 Aug 202118:15	–	cvelist
Debian	[SECURITY] [DSA 4977-1] xen security update	20 Sep 202119:08	–	debian
Debian CVE	CVE-2021-28700	27 Aug 202118:15	–	debiancve
Tenable Nessus	Debian DSA-4977-1 : xen - security update	21 Sep 202100:00	–	nessus
Tenable Nessus	GLSA-202208-23 : Xen: Multiple Vulnerabilities	15 Aug 202200:00	–	nessus

Source	Link
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/FZCNPSRPGFCQRYE2BI4D4Q4SCE56ANV2/
security	www.security.gentoo.org/glsa/202208-23
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/LPRVHW4J4ZCPPOHZEWP5MOJT7XDGFFPJ/
debian	www.debian.org/security/2021/dsa-4977
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/2VQCFAPBNGBBAOMJZG6QBREOG5IIDZID/
xenbits	www.xenbits.xenproject.org/xsa/advisory-383.txt
auscert	www.auscert.org.au/bulletins/ESB-2021.2970
vigilance	www.vigilance.fr/vulnerability/Xen-denial-of-service-via-Dom0less-DomUs-36230
auscert	www.auscert.org.au/bulletins/ESB-2021.2888
packetstormsecurity	www.packetstormsecurity.com/files/168076/Gentoo-Linux-Security-Advisory-202208-23.html

23 May 2026 00:00Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.14.9

CVSS 26.8

EPSS0.0181

xen vulnerability dom0less domu denial of service