Lucene search

K

[email protected]NVD:CVE-2013-0215

HistoryMar 07, 2013 - 5:04 a.m.

CVE-2013-0215

2013-03-0705:04:44

CWE-264

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.3%

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service (daemon crash and host-control outage, or memory consumption) or obtain sensitive control-plane data by leveraging guest administrative access.

Affected configurations

NVD

Node

xenxenMatch4.1.0

OR

xenxenMatch4.1.1

OR

xenxenMatch4.1.2

OR

xenxenMatch4.1.3

OR

xenxenMatch4.1.4

Node

xenxenMatch4.2.0

OR

xenxenMatch4.2.1

References

openwall.com/lists/oss-security/2013/02/05/10

secunia.com/advisories/55082

security.gentoo.org/glsa/glsa-201309-24.xml

xenbits.xen.org/gitweb/?p=xen.git%3Ba=commit%3Bh=40f9c5e0a6d15b4ca1f6d4ed3a46f0871520eab5

xenbits.xen.org/gitweb/?p=xen.git%3Ba=commit%3Bh=61401264eb00fae4ee4efc8e9a5067449283207b

4.3 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:M/Au:N/C:P/I:N/A:P

6.4 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.3%

Related for NVD:CVE-2013-0215

ubuntucve1 prion1 debiancve1 xen1 cve1 cvelist1 nessus7 openvas55 fedora28 gentoo1