Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2018-19964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitel...

6.5CVSS7AI score0.00357EPSS
Exploits0References2
Xen Project
Xen Project
added 2023/03/21 12:0 p.m.54 views

x86/HVM pinned cache attributes mis-handling

ISSUE DESCRIPTION To allow cachability control for HVM guests with passed through devices, an interface exists to explicitly override defaults which would otherwise be put in place. While not exposed to the affected guests themselves, the interface specifically exists for domains controlling such...

8.6CVSS6.8AI score0.01189EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.2 views

SUSE CVE-2019-17347

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because a guest can manipulate its virtualised %cr4 in a way that is incompatible with Linux and possibly other guest kernels...

7.8CVSS7.3AI score0.00352EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2021/02/18 3:5 p.m.27 views

CVE-2021-27379

An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service host OS crash or gain privileges. This occurs because a backport missed a flush, and thus IOMMU updates were not always correct...

7.8CVSS5.2AI score0.00356EPSS
Exploits0
CVE
CVE
added 2020/09/23 9:16 p.m.178 views

CVE-2020-25602

CVE-2020-25602 : Xen up to 4.14.x contains a vulnerability where an x86 PV guest accessing the MISC_ENABLE MSR (0x1a0) triggers a host crash due to missing #GP fault handling when reading this Intel-specific MSR. The vulnerability can crash the host Xen instance, enabling a local Denial of Servic...

6CVSS6.3AI score0.00324EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2019/10/08 1:15 a.m.4 views

UBUNTU-CVE-2019-17343

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains...

6.8CVSS6.9AI score0.00279EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2019/10/08 1:15 a.m.21 views

CVE-2019-17347

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service or gain privileges because a guest can manipulate its virtualised %cr4 in a way that is incompatible with Linux and possibly other guest kernels...

7.8CVSS6.9AI score0.00352EPSS
Exploits0References2
Symantec
Symantec
added 2019/03/05 12:0 a.m.22 views

Xen CVE-2019-17346 Denial of Service Vulnerability

Description Xen is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Xen Xen version 4.11.x and prior are vulnerable. Technologies Affected Xen Xen 2.0 Xen Xen 3.0.2 Xen Xen 3.0.3 Xen Xen 3.0.4 Xen Xen 3.1 Xen Xen 3.1.3 Xen Xen...

0.6AI score0.00349EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2018/12/13 11:12 a.m.24 views

CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

7.8CVSS4.9AI score0.00364EPSS
Exploits0References2
CNVD
CNVD
added 2018/12/10 12:0 a.m.3 views

Xen Denial of Service Vulnerability (CNVD-2019-07946)

Xen is an open source virtual machine monitor developed by the Xen Project. Xen 4.11.x suffers from a denial of service vulnerability that stems from p2m locking being indefinitely unavailable under certain error conditions, which can be exploited by users of x86 client operating systems to cause...

6.5CVSS8.7AI score0.00357EPSS
Exploits0References1
Prion
Prion
added 2018/12/08 4:29 a.m.21 views

Code injection

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

6.9CVSS7.7AI score0.00364EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/08 4:29 a.m.21 views

Design/Logic Flaw

An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitely in certain error conditions...

4.9CVSS6.1AI score0.00357EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/12/08 4:29 a.m.36 views

CVE-2018-19965

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service host OS crash because GP0 can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 aka Meltdown mitigation...

5.6CVSS7.1AI score
Exploits0References6
UbuntuCve
UbuntuCve
added 2018/12/08 4:29 a.m.27 views

CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

7.8CVSS7.1AI score0.00364EPSS
Exploits0References3
OSV
OSV
added 2018/12/08 4:29 a.m.21 views

CVE-2018-19964

An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitely in certain error conditions...

6.5CVSS6.5AI score
Exploits0References2
NVD
NVD
added 2018/12/08 4:29 a.m.16 views

CVE-2018-19964

An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitely in certain error conditions...

6.5CVSS6.4AI score0.00357EPSS
Exploits0References2
OSV
OSV
added 2018/12/08 4:29 a.m.21 views

CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

7.8CVSS7.1AI score
Exploits0References2
Cvelist
Cvelist
added 2018/12/08 4:0 a.m.25 views

CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

8.2AI score0.00364EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/12/08 4:0 a.m.41 views

CVE-2018-19963

An issue was discovered in Xen 4.11 allowing HVM guest OS users to cause a denial of service host OS crash or possibly gain host OS privileges because x86 IOREQ server resource accounting for external emulators was mishandled...

7.8CVSS4.9AI score0.00364EPSS
Exploits0
Debian CVE
Debian CVE
added 2018/12/08 4:0 a.m.34 views

CVE-2018-19964

An issue was discovered in Xen 4.11.x allowing x86 guest OS users to cause a denial of service host OS hang because the p2m lock remains unavailable indefinitely in certain error conditions...

6.5CVSS3.7AI score0.00357EPSS
Exploits0
Rows per page
Query Builder