Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Debian
Debianadded 2016/03/17 9:52 p.m.45 views

[SECURITY] [DSA 3519-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3519-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 17, 2016 https://www.debian.org/security/faq -...

8.6CVSS7.9AI score0.02254EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2016/03/04 12:0 a.m.58 views

Fedora 22 : xen-4.5.2-7.fc22 (2016-e1784417af)

PV superpage functionality missing sanity checks XSA-167, CVE-2016-1570 VMX: intercept issue with INVLPG on non-canonical address XSA-168, CVE-2016-1571 Qemu: pci: NULL pointer dereference issue CVE-2015-7549 qemu: DoS by infinite loop in ehciadvancestate CVE-2015-8558 qemu: Heap-based buffer...

8.5CVSS7AI score0.05557EPSS
Exploits2References20
Tenable Nessus
Tenable Nessusadded 2016/02/29 12:0 a.m.25 views

FreeBSD : xen-kernel -- PV superpage functionality missing sanity checks (7ed7c36f-ddaf-11e5-b2bd-002590263bf5)

The Xen Project reports : The PV superpage functionality lacks certain validity checks on data being passed to the hypervisor by guests. This is the case for the page identifier MFN passed to MMUEXTMARKSUPER and MMUEXTUNMARKSUPER sub-ops of the HYPERVISORmmuextop hypercall as well as for various...

8.5CVSS7.8AI score0.01153EPSS
Exploits0References3
OpenVAS
OpenVASadded 2016/02/05 12:0 a.m.43 views

Fedora Update for xen FEDORA-2016-2

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.2AI score0.05557EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2016/01/26 12:0 a.m.45 views

OracleVM 3.2 : xen (OVMSA-2016-0008)

The remote OracleVM system is missing necessary patches to address critical security updates : - VT-d: fix TLB flushing in dmapteclearone From: Jan Beulich The TLB flush code was wrong since xen-4.1.3-25.el5.127.20 commit: vtd-Refactor-iotlb-flush-code.patch, both ovm-3.2.9 and ovm-3.2.10 were...

8.5CVSS7.1AI score0.01388EPSS
Exploits0References6
OSV
OSVadded 2016/01/22 3:59 p.m.5 views

CVE-2016-1570

The PV superpage functionality in arch/x86/mm.c in Xen 3.4.0, 3.4.1, and 4.1.x through 4.6.x allows local PV guests to obtain sensitive information, cause a denial of service, gain privileges, or have unspecified other impact via a crafted page identifier MFN to the 1 MMUEXTMARKSUPER or 2...

8.5CVSS8.9AI score
Exploits0References3
CVE
CVEadded 2016/01/22 3:0 p.m.89 views

CVE-2016-1570

CVE-2016-1570 affects Xen PV (PV superpage) in arch/x86/mm.c across Xen 3.4.0/3.4.1 and 4.1.x–4.6.x. A crafted MFN page identifier can be used by local PV guests to leak sensitive information, cause a denial of service, escalate privileges, or impact page-table updates via (1) MMUEXT_MARK_SUPER, ...

8.5CVSS6.8AI score0.01153EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder