CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

RedhatCVE•added 2026/01/09 10:51 a.m.•6 views

CVE-2022-42320

Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries...

7CVSS6.6AI score0.00048EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 3:51 a.m.•0 views

SUSE CVE-2020-29481

An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This means that a new domain created with the same domid will inherit the access rights to Xenstore nodes...

6.5CVSS6.3AI score0.00066EPSS

Exploits0References21

SUSE CVE•added 2023/02/15 3:23 a.m.•2 views

SUSE CVE-2022-42320

7.5CVSS6.7AI score0.00048EPSS

Exploits0References19

Tenable Nessus•added 2022/12/07 12:0 a.m.•50 views

SUSE SLES12 Security Update : xen (SUSE-SU-2022:4332-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4332-1 advisory. - Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong...

8.8CVSS6.9AI score0.00099EPSS

Exploits0References45

Prion•added 2022/11/01 1:15 p.m.•17 views

Code injection

3.5CVSS6.7AI score0.00048EPSS

Exploits0References8Affected Software2

Cvelist•added 2022/11/01 12:0 a.m.•17 views

CVE-2022-42320

7.8AI score0.00048EPSS

Exploits0References8

Positive Technologies•added 2022/11/01 12:0 a.m.•1 views

PT-2022-7334 · Xen +1 · Xenstore +1

Name of the Vulnerable Software and Affected Versions: Xenstore affected versions not specified Description: The issue is related to the Xenstore component of the Xen hypervisor, where guests can gain access to Xenstore nodes of deleted domains due to incomplete cleanup of temporary or auxiliary...

8.8CVSS6.4AI score0.00099EPSS

Exploits0References151

NVD•added 2020/12/15 6:15 p.m.•15 views

CVE-2020-29481

8.8CVSS8.3AI score0.00066EPSS

Exploits0References5

OSV•added 2020/12/15 6:15 p.m.•1 views

DEBIAN-CVE-2020-29481

8.8CVSS8.2AI score0.00066EPSS

Exploits0References1

Prion•added 2020/12/15 6:15 p.m.•19 views

Design/Logic Flaw

4.6CVSS8.2AI score0.00066EPSS

Exploits0References5Affected Software3

OSV•added 2020/12/15 6:15 p.m.•0 views

UBUNTU-CVE-2020-29481

8.8CVSS7.2AI score0.00066EPSS

Exploits0References3

Debian CVE•added 2020/12/15 5:51 p.m.•23 views

CVE-2020-29481

8.8CVSS8AI score0.00066EPSS

Exploits0

Xen Project•added 2020/12/15 12:0 p.m.•47 views

Xenstore: new domains inheriting existing node permissions

ISSUE DESCRIPTION Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is destroyed. This means that a new domain created with the same domid will inherit the access rights to Xenstore nodes from the previous domains with the...

8.8CVSS8.5AI score0.00066EPSS

Exploits0

CNNVD•added 2020/12/15 12:0 a.m.•2 views

Xen Security Vulnerabilities

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. Xen through version 4.14.x has a security...

8.8CVSS7.2AI score0.00066EPSS

Exploits0References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by