CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-4239

Malware in sbrugna...

1.5CVSS8.5AI score0.00094EPSS

Exploits0References13

SUSE CVE•added 2023/02/15 5:36 a.m.•1 views

SUSE CVE-2013-4361

The fbld instruction emulation in Xen 3.3.x through 4.3.x does not use the correct variable for the source effective address, which allows local HVM guests to obtain hypervisor stack information by reading the values used by the instruction...

2.1CVSS6.2AI score0.0011EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 5:36 a.m.•1 views

SUSE CVE-2013-4368

The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and earlier, when using FS: or GS: segment override, uses an uninitialized variable as a segment base, which allows local 64-bit PV guests to obtain sensitive information hypervisor stack content via unspecified vectors related to stale...

1.9CVSS6.1AI score0.00094EPSS

Exploits0References9

OpenVAS•added 2021/06/09 12:0 a.m.•21 views

SUSE: Security Advisory (SUSE-SU-2015:0745-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.7AI score0.00235EPSS

Exploits0References8

Tenable Nessus•added 2018/01/15 12:0 a.m.•35 views

Fedora 27 : xen (2017-c432db2971)

xen: various flaws 1501391 multiple MSI mapping issues on x86 XSA-237 DMOP map/unmap missing argument checks XSA-238 hypervisor stack leak in x86 I/O intercept code XSA-239 Unlimited recursion in linear pagetable de-typing XSA-240 Stale TLB entry due to page type release race XSA-241 page type...

8.8CVSS6.6AI score0.00461EPSS

Exploits1References9

Debian•added 2017/11/20 1:39 p.m.•33 views

[SECURITY] [DLA 1181-1] xen security update

Package : xen Version : 4.1.6.lts1-10 CVE ID : CVE-2017-15588 CVE-2017-15589 CVE-2017-15592 CVE-2017-15593 CVE-2017-15595 Multiple vulnerabilities have been discovered in the Xen hypervisor: CVE-2017-15588 Jann Horn discovered a race condition that can cause a stale TLB entry which might result i...

8.8CVSS8.9AI score0.00461EPSS

Exploits1

OSV•added 2017/10/18 8:29 a.m.•31 views

CVE-2017-15589

An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to obtain sensitive information from the host OS or an arbitrary guest OS because intercepted I/O operations can cause a write of data from uninitialized hypervisor stack memory...

6.5CVSS6.7AI score

Exploits0References8

Xen Project•added 2017/10/12 12:0 p.m.•531 views

hypervisor stack leak in x86 I/O intercept code

ISSUE DESCRIPTION Intercepted I/O operations may deal with less than a full machine word's worth of data. While read paths had been the subject of earlier XSAs and hence have been fixed, at least one write path was found where the data stored into an internal structure could contain bits from an...

6.5CVSS0.5AI score0.00094EPSS

Exploits0Affected Software1

OPENSUSE Linux•added 2017/01/02 1:8 p.m.•45 views

Security update for xen (important)

This updates xen to version 4.5.5 to fix the following issues: - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...

4.9CVSS0.4AI score0.00143EPSS

Exploits0References23

Tenable Nessus•added 2016/12/14 12:0 a.m.•30 views

FreeBSD : xen-kernel -- x86 CMPXCHG8B emulation fails to ignore operand size override (80a897a2-c1a6-11e6-ae1b-002590263bf5)

The Xen Project reports : The x86 instruction CMPXCHG8B is supposed to ignore legacy operand size overrides; it only honors the REX.W override making it CMPXCHG16B. So, the operand size is always 8 or 16. When support for CMPXCHG16B emulation was added to the instruction emulator, this restrictio...

3.3CVSS6.3AI score0.00069EPSS

Exploits0References3

Tenable Nessus•added 2015/05/20 12:0 a.m.•26 views

SUSE SLES11 Security Update : Xen (SUSE-SU-2015:0745-1)

The Virtualization service XEN was updated to fix various bugs and security issues. The following security issues have been fixed : CVE-2015-2756: XSA-126: Unmediated PCI command register access in qemu could have lead to denial of service attacks against the host, if PCI cards are passed through...

7.2CVSS7.1AI score0.00235EPSS

Exploits0References5

Tenable Nessus•added 2015/05/20 12:0 a.m.•20 views

SUSE SLED11 / SLES11 Security Update : Xen (SUSE-SU-2015:0747-1)

7.2CVSS7.1AI score0.00235EPSS

Exploits0References5

Tenable Nessus•added 2015/05/20 12:0 a.m.•60 views

SUSE SLES11 Security Update : Xen (SUSE-SU-2014:0446-1)

The SUSE Linux Enterprise Server 11 Service Pack 1 LTSS Xen hypervisor and toolset have been updated to fix various security issues and some bugs. The following security issues have been addressed : XSA-84: CVE-2014-1894: Xen 3.2 and presumably earlier exhibit both problems with the overflow issu...

9.3CVSS7AI score0.07525EPSS

Exploits4References137

Tenable Nessus•added 2015/04/22 12:0 a.m.•41 views

SuSE 11.3 Security Update : Xen (SAT Patch Number 10560)

The Virtualization service XEN was updated to fix various bugs and security issues. The following security issues have been fixed : - XSA-126: Unmediated PCI command register access in qemu could have lead to denial of service attacks against the host, if PCI cards are passed through to guests...

7.2CVSS7.2AI score0.00235EPSS

Exploits0References14

FreeBSD•added 2015/03/05 12:0 a.m.•38 views

xen-kernel -- Information leak through version information hypercall

The Xen Project reports: The code handling certain sub-operations of the HYPERVISORxenversion hypercall fails to fully initialize all fields of structures subsequently copied back to guest memory. Due to this hypervisor stack contents are copied into the destination of the operation, thus becomin...

2.1CVSS6.8AI score0.00076EPSS

Exploits0References1