Lucene search

K
cve[email protected]CVE-2011-1936
HistoryJan 07, 2014 - 7:55 p.m.

CVE-2011-1936

2014-01-0719:55:00
NVD-CWE-noinfo
web.nvd.nist.gov
30
xen
vmx
virtualization
denial of service
cpuid instruction emulation
cve-2011-1936
nvd

5.9 Medium

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

35.0%

Xen, when using x86 Intel processors and the VMX virtualization extension is enabled, does not properly handle cpuid instruction emulation when exiting the VM, which allows local guest users to cause a denial of service (guest crash) via unspecified vectors.

CPENameOperatorVersion
xen:xenxeneq-

5.9 Medium

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

35.0%

Related for CVE-2011-1936