Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2013-4293

Malware in sbrugna...

5.2CVSS8.5AI score0.0055EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4187

Malware in sbrugna...

4.9CVSS8.2AI score0.00439EPSS
Exploits0References15
Oracle linux
Oracle linux
added 2020/06/11 12:0 a.m.42 views

libvirt security update

5.7.0-15.el7 - qemu: Escape the qemu driver systemd DOT hoax Wim ten Have Orabug: 31380815 5.7.0-14.el7 - vmx: make 'fileName' optional for CD-ROMs Pino Toscano Orabug: 31350200 - vmx: shortcut earlier few 'ignore' cases in virVMXParseDisk Pino Toscano Orabug: 31350200 - domain group: Fix a...

6.5CVSS0.7AI score0.02294EPSS
Exploits0
NVD
NVD
added 2016/04/13 3:59 p.m.22 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS8.1AI score0.02254EPSS
Exploits0References7
OSV
OSV
added 2016/04/13 3:59 p.m.7 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors...

8.6CVSS8.4AI score
Exploits0References8
CNVD
CNVD
added 2015/09/06 12:0 a.m.3 views

Xen xenmem_add_to_physmap_one() printk rate limit denial of service vulnerability

Xen is an open source virtual machine. There is a problem with the printk rate limit in Xen xenmemaddtophysmapone, which allows Guest domains with partial administrative control and the ability to map other Guest domains to send large numbers of messages to the Xen console...

2.1CVSS8.4AI score0.00405EPSS
Exploits0References1
OSV
OSV
added 2015/06/15 3:59 p.m.9 views

CVE-2015-4163

GNTTABOPswapgrantref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service NULL pointer dereference via a hypercall without a GNTTABOPsetuptable or GNTTABOPsetversion...

8.6AI score0.00439EPSS
Exploits0References10
OSV
OSV
added 2015/06/15 3:59 p.m.3 views

UBUNTU-CVE-2015-4163

GNTTABOPswapgrantref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service NULL pointer dereference via a hypercall without a GNTTABOPsetuptable or GNTTABOPsetversion...

4.9CVSS7.2AI score0.00439EPSS
Exploits0References3
NVD
NVD
added 2014/10/02 2:55 p.m.18 views

CVE-2014-7154

Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...

6.1CVSS6AI score0.00743EPSS
Exploits0References10
OSV
OSV
added 2014/10/02 2:55 p.m.8 views

CVE-2014-7154

Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...

6AI score
Exploits0References11
Debian CVE
Debian CVE
added 2014/10/02 2:0 p.m.46 views

CVE-2014-7154

Race condition in HVMOPtrackdirtyvram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors...

6.1CVSS5.5AI score0.00743EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Xen 3.3 XenStore Domain Configuration Data Unsafe Storage Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed patches did not resolve thi...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2013/11/02 7:0 p.m.30 views

CVE-2013-4416

The Ocaml xenstored implementation oxenstored in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service domain shutdown via a large message reply...

5.8AI score0.0055EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2013/09/28 12:0 a.m.46 views

GLSA-201309-24 : Xen: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201309-24 Xen: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact : Guest domains could possibly gain privileges, execute arbitrary...

9.3CVSS6.6AI score0.37212EPSS
Exploits13References58
Gentoo Linux
Gentoo Linux
added 2013/09/27 12:0 a.m.67 views

Xen: Multiple vulnerabilities

Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact Guest domains could possibly gain privileges, execute arbitrary code, or cause a Denial of Service on the host domain...

9.3CVSS8AI score0.37212EPSS
Exploits13
OSV
OSV
added 2013/05/13 11:55 p.m.9 views

CVE-2013-1952

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which allows local guest domains to cause a denial of service interrupt injection via unspecified vector...

6.1AI score
Exploits0References10
exploitpack
exploitpack
added 2008/09/30 12:0 a.m.18 views

Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage

Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage source: https://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/30 12:0 a.m.27 views

Xen 3.3 - XenStore Domain Configuration Data Unsafe Storage

source: https://www.securityfocus.com/bid/31499/info Xen is prone to a vulnerability that results in configuration information being stored in a location that is writable by guest domains. UPDATE December 19, 2008: The initial proposed patches did not resolve this issue. Xen 3.3 is vulnerable;...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/10/03 12:0 a.m.55 views

RHEL 5 : xen (RHSA-2007:0323)

An updated Xen package to fix multiple security issues is now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Xen package contains the tools for managing the virtual machine monitor in Red Hat...

7.2CVSS8.8AI score0.00633EPSS
Exploits0References7
Rows per page
Query Builder