Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-29483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.14.x. Xenstored and guests communicate via a shared memory page using a specific protocol. When a guest violates this...

6.5CVSS7.3AI score0.0037EPSS
Exploits0References2
Xen Project
Xen Project
added 2023/10/10 12:0 p.m.58 views

x86/AMD: Debug Mask handling

ISSUE DESCRIPTION AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of the guest state, leading to denials of service. 1 CVE-2023-34327 - An HVM vCPU can end up operating in the...

5.5CVSS6.6AI score0.00256EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-29040

An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service stack corruption, cause a data leak, or possibly gain privileges because of an off-by-one error. NOTE: this issue is caused by an incorrect fix for CVE-2020-27671...

7.9CVSS7.1AI score0.00373EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.10 views

SUSE CVE-2020-29479

An issue was discovered in Xen through 4.14.x. In the Ocaml xenstored implementation, the internal representation of the tree has special cases for the root node, because this node has no parent. Unfortunately, permissions were not checked for certain operations on the root node. Unprivileged...

8.8CVSS6.9AI score0.00304EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/20 10:25 p.m.33 views

CVE-2020-29570

An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is reversed. The consumer assumes, seeing the former initialized, that the latter are also ready for use. Malicious or buggy guest kernels c...

6.2CVSS4.2AI score0.00373EPSS
Exploits0References2
NVD
NVD
added 2021/12/07 12:15 p.m.17 views

CVE-2021-28703

grant table v2 status pages may remain accessible after de-allocation take two Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-allocated whe...

7CVSS0.00305EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/07 12:0 a.m.18 views

CVE-2021-28703

grant table v2 status pages may remain accessible after de-allocation take two Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-allocated whe...

7.6AI score0.00305EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/12/07 12:0 a.m.20 views

CVE-2021-28703

grant table v2 status pages may remain accessible after de-allocation take two Guest get permitted access to certain Xen-owned pages of memory. The majority of such pages remain allocated / associated with a guest for its entire lifetime. Grant table v2 status pages, however, get de-allocated whe...

7CVSS0.4AI score0.00305EPSS
Exploits0
NVD
NVD
added 2021/01/26 8:15 p.m.22 views

CVE-2021-3308

An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. An x86 HVM guest with PCI pass through devices can force the allocation of all IDT vectors on the system by rebooting itself with MSI or MSI-X capabilities enabled and entries setup. Such reboots will leak any vectors...

5.5CVSS5.7AI score0.00417EPSS
Exploits0References4
OSV
OSV
added 2021/01/26 8:15 p.m.24 views

CVE-2021-3308

An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. An x86 HVM guest with PCI pass through devices can force the allocation of all IDT vectors on the system by rebooting itself with MSI or MSI-X capabilities enabled and entries setup. Such reboots will leak any vectors...

5.5CVSS6.5AI score
Exploits0References4
Prion
Prion
added 2021/01/26 8:15 p.m.25 views

Code injection

An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. An x86 HVM guest with PCI pass through devices can force the allocation of all IDT vectors on the system by rebooting itself with MSI or MSI-X capabilities enabled and entries setup. Such reboots will leak any vectors...

4.9CVSS5.5AI score0.00417EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2021/01/26 7:58 p.m.113 views

CVE-2021-3308

CVE-2021-3308 affects the Xen hypervisor (notably Xen 4.12.3–4.12.4 and 4.13.1–4.14.x). An x86 HVM guest with PCI passthrough can reboot with MSI/MSI-X enabled to exhaust all IDT vectors, leaking MSI(-X) entries and causing a DoS for PCI devices across guests or the host. The issue is triggered b...

5.5CVSS5.5AI score0.00417EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2021/01/26 7:58 p.m.32 views

CVE-2021-3308

An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x. An x86 HVM guest with PCI pass through devices can force the allocation of all IDT vectors on the system by rebooting itself with MSI or MSI-X capabilities enabled and entries setup. Such reboots will leak any vectors...

5.5CVSS5.9AI score0.00417EPSS
Exploits0
OSV
OSV
added 2020/12/15 6:15 p.m.3 views

DEBIAN-CVE-2020-29481

An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This means that a new domain created with the same domid will inherit the access rights to Xenstore nodes...

8.8CVSS8.2AI score0.00347EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/12/15 6:15 p.m.36 views

CVE-2020-29485

An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XSRESETWATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. This can lead to a system-wide DoS. Only systems using the Ocaml Xenstored implementation are...

5.5CVSS6.1AI score0.004EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/12/15 6:15 p.m.40 views

CVE-2020-29483

An issue was discovered in Xen through 4.14.x. Xenstored and guests communicate via a shared memory page using a specific protocol. When a guest violates this protocol, xenstored will drop the connection to that guest. Unfortunately, this is done by just removing the guest from xenstored's intern...

6.5CVSS6.7AI score0.0037EPSS
Exploits0References3
OSV
OSV
added 2020/12/15 6:15 p.m.3 views

UBUNTU-CVE-2020-29486

An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run another guest out of quota, or create an unbounded number of nodes owned by dom0, thus running...

6CVSS5.8AI score0.00406EPSS
Exploits0References3
NVD
NVD
added 2020/12/15 5:15 p.m.15 views

CVE-2020-29567

An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation has to happen when certain constraints are met. If these conditions are not met when first checke...

6.2CVSS6.4AI score0.0036EPSS
Exploits0References3
OSV
OSV
added 2020/12/15 5:15 p.m.21 views

CVE-2020-29567

An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs to distribute the load of IRQ handling, IRQ vectors are dynamically allocated and de-allocated on the relevant CPUs. De-allocation has to happen when certain constraints are met. If these conditions are not met when first checke...

6.2CVSS6.4AI score
Exploits0References3
Prion
Prion
added 2020/12/15 5:15 p.m.25 views

Design/Logic Flaw

An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is reversed. The consumer assumes, seeing the former initialized, that the latter are also ready for use. Malicious or buggy guest kernels c...

4.9CVSS7.2AI score0.00373EPSS
Exploits0References6Affected Software3
Rows per page
Query Builder