Lucene search
K

11 matches found

Debian CVE
Debian CVE
added 2017/01/23 9:0 p.m.22 views

CVE-2016-9386

The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values...

7.8CVSS5AI score0.00446EPSS
Exploits0
CVE
CVE
added 2016/01/22 3:0 p.m.106 views

CVE-2016-1571

CVE-2016-1571 affects Xen 3.3.x–4.6.x. When shadow paging or nested virtualization is enabled, a local HVM guest can trigger the hypervisor bug check via a non-canonical guest address in an INVVPID instruction, causing a host crash (DoS). The description does not specify a vendor patch or fixed v...

6.3CVSS6.1AI score0.01277EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2015/06/03 8:59 p.m.3 views

CVE-2015-4104

Xen 3.3.x through 4.5.x does not properly restrict access to PCI MSI mask bits, which allows local x86 HVM guest users to cause a denial of service unexpected interrupt and host crash via unspecified vectors...

6.6AI score
Exploits0References16
UbuntuCve
UbuntuCve
added 2015/03/12 2:59 p.m.32 views

CVE-2015-2044

The emulation routines for unspecified X86 devices in Xen 3.2.x through 4.5.x does not properly initialize data, which allow local HVM guest users to obtain sensitive information via vectors involving an unsupported access size...

2.1CVSS6.9AI score0.00414EPSS
Exploits0References2
CVE
CVE
added 2015/03/12 2:0 p.m.90 views

CVE-2015-2044

CVE-2015-2044 concerns the Xen hypervisor: the emulation routines for unspecified X86 devices in Xen 3.2.x–4.5.x do not properly initialize data, enabling local HVM guest users to obtain sensitive information via an unsupported access size. The Mageia advisory MGASA-2016-0098 documents this CVE a...

2.1CVSS4.8AI score0.00414EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2015/03/12 2:0 p.m.24 views

CVE-2015-2044

The emulation routines for unspecified X86 devices in Xen 3.2.x through 4.5.x does not properly initialize data, which allow local HVM guest users to obtain sensitive information via vectors involving an unsupported access size...

5.2AI score0.00414EPSS
Exploits0References12
OSV
OSV
added 2014/11/19 6:59 p.m.5 views

CVE-2014-8595

arch/x86/x86emulate/x86emulate.c in Xen 3.2.1 through 4.4.x does not properly check privileges, which allows local HVM guest users to gain privileges or cause a denial of service crash via a crafted 1 CALL, 2 JMP, 3 RETF, 4 LCALL, 5 LJMP, or 6 LRET far branch instruction...

6.2AI score
Exploits0References12
Cvelist
Cvelist
added 2014/10/02 2:0 p.m.37 views

CVE-2014-7156

The x86emulate function in arch/x86/x86emulate/x86emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service guest crash via unspecified vectors...

3.5AI score0.00849EPSS
Exploits0References13
Debian CVE
Debian CVE
added 2014/10/02 2:0 p.m.29 views

CVE-2014-7156

The x86emulate function in arch/x86/x86emulate/x86emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service guest crash via unspecified vectors...

3.3CVSS5.1AI score0.00849EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2007/12/17 11:46 p.m.22 views

CVE-2007-6416

The copytouser function in the PAL emulation functionality for Xen 3.1.2 and earlier, when running on ia64 systems, allows HVM guest users to access arbitrary physical memory by triggering certain mapping operations...

4.6CVSS5.9AI score0.0044EPSS
Exploits2References1
Prion
Prion
added 2007/12/17 11:46 p.m.32 views

Design/Logic Flaw

The copytouser function in the PAL emulation functionality for Xen 3.1.2 and earlier, when running on ia64 systems, allows HVM guest users to access arbitrary physical memory by triggering certain mapping operations...

4.6CVSS6.4AI score0.0044EPSS
Exploits2References7Affected Software1
Rows per page
Query Builder