Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

128 matches found

RedHat Linux
RedHat Linuxadded 2007/10/02 8:53 p.m.32 views

Important: Red Hat Security Advisory: xen security update

An updated Xen package to fix multiple security issues is now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Xen package contains the tools for managing the virtual machine monitor in Red Hat...

7.2CVSS7.7AI score0.00275EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2007/10/02 8:53 p.m.2 views

xen guest root can escape to domain 0 through pygrub

pygrub tools/pygrub/src/GrubConf.py in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements...

6.9CVSS6.1AI score0.00275EPSS
Exploits0References4
Oracle linux
Oracle linuxadded 2007/10/02 12:0 a.m.42 views

Important: xen security update

3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest escape - CVE-2007-4993 rhbz 302821...

7.2CVSS1.6AI score0.00275EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2007/09/27 5:17 p.m.28 views

CVE-2007-4993

pygrub tools/pygrub/src/GrubConf.py in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements...

6.9CVSS6AI score0.00275EPSS
Exploits0References2
Prion
Prionadded 2007/09/27 5:17 p.m.27 views

Design/Logic Flaw

pygrub tools/pygrub/src/GrubConf.py in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements...

6.9CVSS6.9AI score0.00275EPSS
Exploits0References21Affected Software1
CVE
CVEadded 2007/09/27 5:0 p.m.64 views

CVE-2007-4993

CVE-2007-4993 affects Xen 3.0.3: Pygrub (tools/pygrub/src/GrubConf.py) used when booting a guest domain. A local attacker with privileges in the guest can craft a grub.conf that is executed via exec statements, enabling arbitrary code execution in domain 0. This is a local, guest-to-domain-0 priv...

6.9CVSS6.6AI score0.00275EPSS
Exploits0References21Affected Software1
Cvelist
Cvelistadded 2007/09/27 5:0 p.m.18 views

CVE-2007-4993

pygrub tools/pygrub/src/GrubConf.py in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafted grub.conf file whose contents are used in exec statements...

6.7AI score0.00275EPSS
Exploits0References21
Exploit DB
Exploit DBadded 2007/09/22 12:0 a.m.33 views

Xen 3.0.3 - pygrub TOOLS/PYGRUB/SRC/GRUBCONF.PY Local Command Injection

source: https://www.securityfocus.com/bid/25825/info Xen is prone to a local command-injection vulnerability that can lead to privilege escalation. This issue occurs because the application fails to validate input in the 'tools/pygrub/src/GrubConf.py' script. This vulnerability affects Xen 3.0.3;...

7.4AI score
Exploits0
Rows per page
Query Builder