Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-2874

Malware in sbrugna...

5.5CVSS7.3AI score0.0059EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-3673

Malware in sbrugna...

6.8CVSS6.4AI score0.02938EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2015/06/03 12:0 a.m.31 views

CVE-2015-4105

Xen 3.3.x through 4.5.x enables logging for PCI MSI-X pass-through error messages, which allows local x86 HVM guests to cause a denial of service host disk consumption via certain invalid operations...

4.9CVSS7.2AI score0.00478EPSS
Exploits0References3
Xen Project
Xen Project
added 2014/11/27 11:25 a.m.70 views

Excessive checking in compatibility mode hypercall argument translation

ISSUE DESCRIPTION The hypercall argument translation needed for 32-bit guests running on 64-bit hypervisors performs checks on the final register state. These checks cover all registers potentially holding hypercall arguments, not just the ones actually doing so for the hypercall being processed,...

4.7CVSS8.9AI score0.00432EPSS
Exploits0Affected Software1
NVD
NVD
added 2014/10/02 2:55 p.m.28 views

CVE-2014-7156

The x86emulate function in arch/x86/x86emulate/x86emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of service guest crash via unspecified vectors...

3.3CVSS6AI score0.00849EPSS
Exploits0References13
NVD
NVD
added 2013/10/01 5:55 p.m.20 views

CVE-2011-2901

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

5.5CVSS7.2AI score0.0059EPSS
Exploits0References5
Prion
Prion
added 2013/10/01 5:55 p.m.30 views

Code injection

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

5.5CVSS6.6AI score0.0059EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2013/10/01 5:55 p.m.40 views

CVE-2011-2901

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

5.5CVSS7.1AI score0.0059EPSS
Exploits0References3
CVE
CVE
added 2013/10/01 5:0 p.m.80 views

CVE-2011-2901

CVE-2011-2901 affects Xen 3.3 and earlier. The off-by-one error in the __addr_ok macro allows local 64-bit PV guest administrators to cause a host crash (denial of service) via unspecified hypercalls that ignore virtual-address bits. Public references confirm the issue across multiple advisories ...

5.5CVSS6.9AI score0.0059EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2013/10/01 5:0 p.m.36 views

CVE-2011-2901

Off-by-one error in the addrok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service host crash via unspecified hypercalls that ignore virtual-address bits...

5.5CVSS4.5AI score0.0059EPSS
Exploits0
Xen Project
Xen Project
added 2013/09/30 10:4 a.m.63 views

Information leak through fbld instruction emulation

ISSUE DESCRIPTION The emulation of the fbld instruction which is used during I/O emulation uses the wrong variable for the source effective address. As a result, the actual address used is an uninitialised bit pattern from the stack. A malicious guest might be able to find out information about t...

2.1CVSS0.4AI score0.00395EPSS
Exploits0Affected Software1
Prion
Prion
added 2011/08/12 6:55 p.m.38 views

Integer overflow

Multiple integer overflows in tools/libxc/xcdombzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image that triggers 1 a buffer overflow during a decompression loop or 2 an...

6.9CVSS8.1AI score0.00705EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2009/08/27 8:30 p.m.17 views

Input validation

Intel Desktop and Intel Mobile Boards with BIOS firmware DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU, DG33TL, MGM965TW, D945GCPE, and DX38BT allows local administrators with ring 0 privileges to gain additional privileges and modify code that is running in System Management Mode, or access hypervisory...

6.9CVSS7.1AI score0.00322EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2009/08/27 8:0 p.m.25 views

CVE-2008-7096

Intel Desktop and Intel Mobile Boards with BIOS firmware DQ35JO, DQ35MP, DP35DP, DG33FB, DG33BU, DG33TL, MGM965TW, D945GCPE, and DX38BT allows local administrators with ring 0 privileges to gain additional privileges and modify code that is running in System Management Mode, or access hypervisory...

6.8AI score0.00322EPSS
Exploits0References7
NVD
NVD
added 2008/08/14 10:41 p.m.25 views

CVE-2008-3687

Heap-based buffer overflow in the flasksecuritylabel function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users domU to execute arbitrary code via the flaskop hypercall...

6.8CVSS7.9AI score0.02938EPSS
Exploits0References9
Prion
Prion
added 2008/08/14 10:41 p.m.17 views

Heap overflow

Heap-based buffer overflow in the flasksecuritylabel function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users domU to execute arbitrary code via the flaskop hypercall...

6.8CVSS8.5AI score0.02938EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2008/08/14 10:0 p.m.50 views

CVE-2008-3687

Affected: Xen 3.3 compiled with XSM:FLASK. Vulnerable: flask_security_label function, due to a heap-based buffer overflow. Impact: unprivileged domU users can execute arbitrary code via the flask_op hypercall. Public exploit details are not provided in the documents; no patch/version remediation ...

6.8CVSS7.9AI score0.02938EPSS
Exploits0References9Affected Software2
Rows per page
Query Builder