Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 5:25 a.m.2 views

SUSE CVE-2014-8594

The dommuupdate function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service NULL pointer dereference by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging...

5.4CVSS6.7AI score0.01331EPSS
Exploits0References11
Tenable Nessus
Tenable Nessusadded 2015/05/20 12:0 a.m.45 views

SUSE SLES11 Security Update : xen (SUSE-SU-2014:1732-1)

xen was updated to fix 10 security issues : - Guest effectable page reference leak in MMUMACHPHYSUPDATE handling CVE-2014-9030. - Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor CVE-2014-8867. - Missing privilege level checks in x86 emulation of far branches...

7.1CVSS8.1AI score0.01649EPSS
Exploits0References29
securityvulns
securityvulnsadded 2015/02/02 12:0 a.m.65 views

[SECURITY] [DSA 3140-1] xen security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq -...

7.1CVSS2.5AI score0.01649EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2015/01/28 12:0 a.m.29 views

Debian DSA-3140-1 : xen - security update

Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. - CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...

7.1CVSS8.1AI score0.01649EPSS
Exploits0References12
Debian
Debianadded 2015/01/27 10:53 a.m.28 views

[SECURITY] [DSA 3140-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq -...

7.1CVSS6.8AI score0.01649EPSS
Exploits0
OSV
OSVadded 2015/01/27 12:0 a.m.33 views

DSA-3140-1 xen - security update

Bulletin has no description...

7.1CVSS3.9AI score0.01649EPSS
Exploits0
OSV
OSVadded 2014/11/24 3:59 p.m.5 views

CVE-2014-9030

The dommuupdate function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an HVM guest and a crafted MMUMACHPHYSUPDATE...

6.2AI score
Exploits0References10
OSV
OSVadded 2014/11/19 6:59 p.m.1 views

UBUNTU-CVE-2014-8594

The dommuupdate function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service NULL pointer dereference by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging...

5.4CVSS7.3AI score0.01331EPSS
Exploits0References3
Xen Project
Xen Projectadded 2014/11/18 12:0 p.m.51 views

Insufficient restrictions on certain MMU update hypercalls

ISSUE DESCRIPTION MMU update operations targeting page tables are intended to be used on PV guests only. The lack of a respective check made it possible for such operations to access certain function pointers which remain NULL when the target guest is using Hardware Assisted Paging HAP. IMPACT...

5.4CVSS9AI score0.01331EPSS
Exploits0Affected Software1
Rows per page
Query Builder