Lucene search

[email protected]NVD:CVE-2018-7540

HistoryFeb 27, 2018 - 7:29 p.m.

CVE-2018-7540

2018-02-2719:29:00

CWE-400

[email protected]

web.nvd.nist.gov

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

26.7%

JSON

An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (host OS CPU hang) via non-preemptable L3/L4 pagetable freeing.

Affected configurations

NVD

Node

xenxenRange≤4.10.0

Node

debiandebian_linuxMatch9.0

References

www.securityfocus.com/bid/103174

www.securitytracker.com/id/1040773

lists.debian.org/debian-lts-announce/2018/03/msg00003.html

lists.debian.org/debian-lts-announce/2018/11/msg00013.html

security.gentoo.org/glsa/201810-06

support.citrix.com/article/CTX232096

support.citrix.com/article/CTX232655

www.debian.org/security/2018/dsa-4131

xenbits.xen.org/xsa/advisory-252.html

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

26.7%

JSON

Related for NVD:CVE-2018-7540

cve1 prion1 redhatcve1 debiancve1 nessus22 ubuntucve1 xen1 cvelist1 osv4 debian3 openvas18 fedora11 citrix1 suse4 gentoo1