Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-1796
HistoryMar 22, 2013 - 11:59 a.m.

CVE-2013-1796

2013-03-2211:59:11
CWE-119
[email protected]
web.nvd.nist.gov
7

CVSS2

6.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

62.0%

JSON

The kvm_set_msr_common function in arch/x86/kvm/x86.c in the Linux kernel through 3.8.4 does not ensure a required time_page alignment during an MSR_KVM_SYSTEM_TIME operation, which allows guest OS users to cause a denial of service (buffer overflow and host OS memory corruption) or possibly have unspecified other impact via a crafted application.

Affected configurations

Nvd
Node
linuxlinux_kernelRange≀3.8.4
OR
linuxlinux_kernelMatch3.8.0
OR
linuxlinux_kernelMatch3.8.1
OR
linuxlinux_kernelMatch3.8.2
OR
linuxlinux_kernelMatch3.8.3
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel3.8.0cpe:2.3:o:linux:linux_kernel:3.8.0:*:*:*:*:*:*:*
linuxlinux_kernel3.8.1cpe:2.3:o:linux:linux_kernel:3.8.1:*:*:*:*:*:*:*
linuxlinux_kernel3.8.2cpe:2.3:o:linux:linux_kernel:3.8.2:*:*:*:*:*:*:*
linuxlinux_kernel3.8.3cpe:2.3:o:linux:linux_kernel:3.8.3:*:*:*:*:*:*:*

References

Related

ubuntucve 1
cvelist 1
seebug 1
prion 1
cve 1
debiancve 1
redhat 5
centos 2
oraclelinux 8
openvas 74
nessus 31
suse 6
ubuntu 5
securityvulns 4
fedora 20
debian 2
osv 2
altlinux 1
ubuntucve
ubuntucve
CVE-2013-1796
2013-03-18 00:00:00
cvelist
cvelist
CVE-2013-1796
2013-03-22 10:00:00
seebug
seebug
Linux Kernel KVM ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž(CVE-2013-1796)
2013-03-24 00:00:00
prion
prion
Buffer overflow
2013-03-22 11:59:00
cve
cve
CVE-2013-1796
2013-03-22 11:59:11
debiancve
debiancve
CVE-2013-1796
2013-03-22 11:59:11
redhat
redhat
(RHSA-2013:0727) Important: kvm security update
2013-04-09 00:00:00
(RHSA-2013:1026) Important: kernel security and bug fix update
2013-07-09 00:00:00
(RHSA-2013:0928) Important: kernel security and bug fix update
2013-06-11 00:00:00
centos
centos
kmod, kvm security update
2013-04-10 03:55:37
kernel, perf, python security update
2013-04-24 02:13:29
oraclelinux
oraclelinux
kvm security update
2013-04-09 00:00:00
kvm security update
2014-02-12 00:00:00
Unbreakable Enterprise kernel Security update
2013-04-24 00:00:00
openvas
openvas
CentOS Update for kmod-kvm CESA-2013:0727 centos5
2013-04-15 00:00:00
Oracle: Security Advisory (ELSA-2013-0727)
2015-10-06 00:00:00
CentOS Update for kmod-kvm CESA-2013:0727 centos5
2013-04-15 00:00:00
nessus
nessus
Oracle Linux 5 : kvm (ELSA-2013-0727)
2013-07-12 00:00:00
CentOS 5 : kvm (CESA-2013:0727)
2013-04-11 00:00:00
Scientific Linux Security Update : kvm on SL5.x x86_64 (20130409)
2013-04-10 00:00:00
suse
suse
kernel: security and bugfix update (important)
2013-05-31 16:04:13
kernel: security and bugfix update (important)
2013-06-10 17:23:00
Security update for Linux kernel (important)
2013-05-07 21:04:31
ubuntu
ubuntu
Linux kernel vulnerabilities
2013-04-19 00:00:00
Linux kernel (EC2) vulnerabilities
2013-04-25 00:00:00
Linux kernel vulnerabilities
2013-05-02 00:00:00
securityvulns
securityvulns
[USN-1813-1] Linux kernel vulnerabilities
2013-05-04 00:00:00
Linux kernel multiple security vulnerabilities
2013-03-19 00:00:00
Linux kernel multiple security vulnerabilities
2013-05-27 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: kernel-3.8.4-202.fc18
2013-03-23 23:58:27
[SECURITY] Fedora 18 Update: kernel-3.8.6-203.fc18
2013-04-11 23:33:52
[SECURITY] Fedora 18 Update: kernel-3.8.8-202.fc18
2013-04-19 04:59:13
debian
debian
[SECURITY] [DSA 2669-1] linux security update
2013-05-16 02:48:53
[SECURITY] [DSA 2668-1] linux-2.6 security update
2013-05-14 19:14:29
osv
osv
linux - several
2013-05-15 00:00:00
linux-2.6 - several
2013-05-14 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt13
2013-11-24 00:00:00

CVSS2

6.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

0.002

Percentile

62.0%

JSON
Related for NVD:CVE-2013-1796
ubuntucve1cvelist1seebug1prion1cve1debiancve1redhat5centos2oraclelinux8openvas74nessus31suse6ubuntu5securityvulns4fedora20debian2osv2altlinux1