Lucene search
K

39 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-4251

Malware in sbrugna...

1.9CVSS6AI score0.00343EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-4240

Malware in sbrugna...

5.4CVSS8.5AI score0.00611EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2015-8104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

10CVSS6.7AI score0.02501EPSS
Exploits0References3
CVE
CVE
added 2017/05/03 7:0 p.m.74 views

CVE-2017-7995

Concretely, CVE-2017-7995 affects Xen PV guests prior to 4.3: MMIO access permission checks were performed after accessing MMIO ranges, enabling host PCI device space memory reads and leading to information disclosure. The underlying cause is an error in the get_user function. Public symptom and ...

3.8CVSS4.2AI score0.00368EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/01/11 12:0 a.m.46 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3502)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3502 advisory. - KEYS: Don't permit requestkey to construct a new keyring David Howells Orabug: 22373449 CVE-2015-7872 - crypto: add missing crypto module aliases...

10CVSS6.7AI score0.02501EPSS
Exploits2References7
CVE
CVE
added 2015/01/07 7:0 p.m.63 views

CVE-2015-0361

CVE-2015-0361 : Use-after-free in Xen 4.2.x/4.3.x/4.4.x allows remote domains to crash the system via a crafted hypercall during HVM guest teardown. The initial description does not provide exploit details beyond this, and no remediation or affected patch version is stated in the provided documen...

7.8CVSS5.2AI score0.02513EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2014/06/05 8:55 p.m.21 views

CVE-2014-3967

The HVMOPinjectmsi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service NULL pointer dereference and crash via unspecified vectors...

5.5CVSS6AI score0.0071EPSS
Exploits0References9
Cvelist
Cvelist
added 2014/06/05 8:0 p.m.27 views

CVE-2014-3968

The HVMOPinjectmsi function in Xen 4.2.x, 4.3.x, and 4.4.x allows local guest HVM administrators to cause a denial of service host crash via a large number of crafted requests, which trigger an error messages to be logged...

5.7AI score0.00719EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2014/06/05 8:0 p.m.31 views

CVE-2014-3967

The HVMOPinjectmsi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service NULL pointer dereference and crash via unspecified vectors...

5.5CVSS4.2AI score0.0071EPSS
Exploits0
NVD
NVD
added 2014/04/01 6:35 a.m.19 views

CVE-2014-1891

Multiple integer overflows in the 1 FLASKGETBOOL, 2 FLASKSETBOOL, 3 FLASKUSER, and 4 FLASKCONTEXTTOSID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service processor fault via unspecified vectors, ...

5.2CVSS6AI score0.00547EPSS
Exploits0References8
NVD
NVD
added 2014/04/01 6:35 a.m.16 views

CVE-2014-1895

Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...

5.8CVSS6AI score0.00525EPSS
Exploits0References5
Prion
Prion
added 2014/04/01 6:35 a.m.20 views

Code injection

The 1 dosend and 2 dorecv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore ring indexes, which triggers a "read or write past the end of the ring."...

4.9CVSS7.2AI score0.00537EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2014/04/01 6:35 a.m.25 views

Integer overflow

Multiple integer overflows in the 1 FLASKGETBOOL, 2 FLASKSETBOOL, 3 FLASKUSER, and 4 FLASKCONTEXTTOSID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service processor fault via unspecified vectors, ...

5.2CVSS6.3AI score0.00547EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2014/04/01 6:35 a.m.21 views

Buffer overflow

Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...

5.8CVSS6.7AI score0.00525EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2014/04/01 6:35 a.m.32 views

CVE-2014-1891

Multiple integer overflows in the 1 FLASKGETBOOL, 2 FLASKSETBOOL, 3 FLASKUSER, and 4 FLASKCONTEXTTOSID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service processor fault via unspecified vectors, ...

5.2CVSS5.9AI score0.00547EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/04/01 6:35 a.m.30 views

CVE-2014-1895

Off-by-one error in the flasksecurityavccachestats function in xsm/flask/flaskop.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denial of service host crash or obtain sensitive information from hypervisor memory by leveraging a...

5.8CVSS5.9AI score0.00525EPSS
Exploits0References2
CVE
CVE
added 2014/04/01 1:0 a.m.65 views

CVE-2014-1891

CVE-2014-1891 affects the Xen hypervisor for multiple 4.x branches and older (3.2.x and earlier) when XSM is enabled. The issue is described as multiple integer overflows in the FLASK_GETBOOL, FLASK_SETBOOL, FLASK_USER, and FLASK_CONTEXT_TO_SID suboperations of the flask hypercall, enabling a loc...

5.2CVSS6AI score0.00547EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2014/04/01 1:0 a.m.34 views

CVE-2014-1891

Multiple integer overflows in the 1 FLASKGETBOOL, 2 FLASKSETBOOL, 3 FLASKUSER, and 4 FLASKCONTEXTTOSID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause a denial of service processor fault via unspecified vectors, ...

5.2CVSS4.5AI score0.00547EPSS
Exploits0
NVD
NVD
added 2014/01/26 4:58 p.m.20 views

CVE-2014-1642

The IRQ setup in Xen 4.2.x and 4.3.x, when using device passthrough and configured to support a large number of CPUs, frees certain memory that may still be intended for use, which allows local guest administrators to cause a denial of service memory corruption and hypervisor crash and possibly...

4.4CVSS7.4AI score0.00444EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2014/01/26 4:58 p.m.27 views

CVE-2014-1666

The dophysdevop function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the 1 PHYSDEVOPpreparemsix and 2 PHYSDEVOPreleasemsix operations, which allows local PV guests to cause a denial of service host or guest malfunction or possibly gain privileges via...

8.3CVSS5.9AI score0.00876EPSS
Exploits0References3
Rows per page
Query Builder