5.7 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:M/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
55.4%
The vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling caches, allows local HVM guests with access to memory mapped I/O regions to cause a denial of service (CPU consumption and possibly hypervisor or guest kernel panic) via a crafted GFN range.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | xen | < 4.3.0-1 | xen_4.3.0-1_all.deb |
Debian | 11 | all | xen | < 4.3.0-1 | xen_4.3.0-1_all.deb |
Debian | 999 | all | xen | < 4.3.0-1 | xen_4.3.0-1_all.deb |
Debian | 13 | all | xen | < 4.3.0-1 | xen_4.3.0-1_all.deb |