Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-18421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and...

7.5CVSS6.9AI score0.01679EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.5 views

SUSE CVE-2019-18421

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues with restartable PV type change operations. To avoid using shadow pagetables for PV guests, Xen...

8.2CVSS7.7AI score0.01679EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.157 views

SUSE SLES11 Security Update : xen (SUSE-SU-2020:14444-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14444-1 advisory. - Improper invalidation for page table updates by a virtual guest operating system for multiple IntelR Processors may allow an authenticated...

9.8CVSS8.3AI score0.04141EPSS
Exploits0References49
Cvelist
Cvelist
added 2019/12/11 4:51 p.m.30 views

CVE-2019-19580

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations, because of an incomplete fix for CVE-2019-18421. XSA-299 addressed several critical issues in restartable PV type...

8.3AI score0.01187EPSS
Exploits0References7
CVE
CVE
added 2019/12/11 4:51 p.m.170 views

CVE-2019-19580

Xen through 4.12.x contains a privilege-escalation vulnerability (CVE-2019-19580) affecting x86 PV guests due to race conditions in pagetable promotion/demotion after an incomplete fix for CVE-2019-18421 (XSA-299). The issue could allow a malicious PV guest administrator to escalate to host privi...

6.6CVSS8.1AI score0.01187EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/11/20 12:0 a.m.42 views

Xen Restartable PV Type Change Operations Elevation of Privilege Vulnerability (XSA-299)

According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by an elevation of privilege vulnerability due to race conditions in the pagetable promotion and demotion operations. An authenticated, remote attacker can exploit this issue, by triggering...

7.5CVSS7AI score0.01679EPSS
Exploits0References3
OSV
OSV
added 2019/10/31 2:15 p.m.4 views

ALPINE-CVE-2019-18421

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues with restartable PV type change operations. To avoid using shadow pagetables for PV guests, Xen...

7.5CVSS7.5AI score0.01679EPSS
Exploits0References1
OSV
OSV
added 2019/10/31 2:15 p.m.2 views

UBUNTU-CVE-2019-18421

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues with restartable PV type change operations. To avoid using shadow pagetables for PV guests, Xen...

7.5CVSS6.8AI score0.01679EPSS
Exploits0References5
CVE
CVE
added 2019/10/31 1:34 p.m.194 views

CVE-2019-18421

CVE-2019-18421 affects the Xen hypervisor on x86 PV guests. Root cause: restartable PV type changes with recursive pagetable promotions/demotions contain races that can lead to incorrect type counts, enabling a PV guest to gain host privileges. Impact: local privilege escalation to host OS on all...

7.5CVSS8.1AI score0.01679EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2019/10/31 12:0 a.m.9 views

PT-2019-4883 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions through 4.12.x Description: The issue is related to a flaw in restartable PV type change operations, which can be exploited by a remote attacker to gain access to confidential data, compromise its integrity, and cause a denial of...

9.8CVSS7.7AI score0.16658EPSS
Exploits4References188
Rows per page
Query Builder