Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-26357

🗓️ 05 Apr 2022 00:00:00Reported by XENType 
cve
 cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 124 Views

race in VT-d domain ID cleanup Xen domain IDs are up to 15 bits wide. VT-d hardware may allow for only less than 15 bits to hold a domain ID associating a physical device with a particular domain. Therefore internally Xen domain IDs are mapped to the smaller value range. The cleaning up of the housekeeping structures has a race, allowing for VT-d domain IDs to be leaked and flushes to be bypassed

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2022-26357
5 Apr 202213:15
attackerkb
AlpineLinux		CVE-2022-26357
5 Apr 202213:15
alpinelinux
Circl		CVE-2022-26357
5 Apr 202216:28
circl
CNNVD		Xen 竞争条件问题漏洞
5 Apr 202200:00
cnnvd
Citrix		Citrix Hypervisor Security Update
5 Apr 202210:50
citrix
Cvelist		CVE-2022-26357
5 Apr 202200:00
cvelist
Debian		[SECURITY] [DSA 5117-1] xen security update
10 Apr 202218:07
debian
Debian CVE		CVE-2022-26357
5 Apr 202200:00
debiancve
Fedora		[SECURITY] Fedora 35 Update: xen-4.15.2-3.fc35
21 Apr 202221:22
fedora
Fedora		[SECURITY] Fedora 36 Update: xen-4.16.1-1.fc36
7 May 202205:01
fedora
Rows per page
NVD
Node
xenxenRange4.11.04.12.0
OR
xenxenRange4.13.04.16.0
Node
debiandebian_linuxMatch11.0
Node
fedoraprojectfedoraMatch34
OR
fedoraprojectfedoraMatch35
[
  {
    "vendor": "Xen",
    "product": "xen",
    "versions": [
      {
        "version": "consult Xen advisory XSA-399",
        "status": "unknown"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:53Current
6.9Medium risk
Vulners AI Score6.9
CVSS 26.2
CVSS 3.17
EPSS0.00018
CWE-362
cve-2022-26357vt-dxendomain idracesecurityvulnerabilitynvd
124