Lucene search
K

40 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2015-1696

Malware in sbrugna...

2.1CVSS8.5AI score0.00411EPSS
Exploits0References7
Xen Project
Xen Project
added 2023/10/10 12:0 p.m.58 views

x86/AMD: Debug Mask handling

ISSUE DESCRIPTION AMD CPUs since 2014 have extensions to normal x86 debugging functionality. Xen supports guests using these extensions. Unfortunately there are errors in Xen's handling of the guest state, leading to denials of service. 1 CVE-2023-34327 - An HVM vCPU can end up operating in the...

5.5CVSS6.6AI score0.00256EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:16 a.m.3 views

SUSE CVE-2015-5166

Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice...

7.2CVSS6.8AI score0.00426EPSS
Exploits0References10
Veracode
Veracode
added 2019/01/15 9:7 a.m.37 views

Information Disclosure

qemu-kvm-rhev is vulnerable to information disclosure attacks. The vulnerability exists as the C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors...

9.3CVSS6.2AI score0.13288EPSS
Exploits0References30Affected Software2
UbuntuCve
UbuntuCve
added 2017/09/12 3:29 p.m.21 views

CVE-2017-14318

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

6.5CVSS6.9AI score0.00422EPSS
Exploits0References2
Prion
Prion
added 2017/09/12 3:29 p.m.20 views

Null pointer dereference

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

4.9CVSS6.5AI score0.00422EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2017/09/12 3:0 p.m.26 views

CVE-2017-14318

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

6.5CVSS1.4AI score0.00422EPSS
Exploits0
Xen Project
Xen Project
added 2017/09/12 12:0 p.m.524 views

Missing check for grant table

ISSUE DESCRIPTION The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mapping to the calling domain exists for...

6.5CVSS0.5AI score0.00422EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2017/08/15 4:29 p.m.30 views

CVE-2017-12855

Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the...

6.5CVSS6.9AI score0.00398EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/02/22 4:59 p.m.36 views

CVE-2016-9378

Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service guest crash by leveraging an incorrect choice for software interrupt delivery...

5.5CVSS6.8AI score0.00341EPSS
Exploits0References2
NVD
NVD
added 2017/02/22 4:59 p.m.21 views

CVE-2016-9378

Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service guest crash by leveraging an incorrect choice for software interrupt delivery...

5.5CVSS5.3AI score0.00341EPSS
Exploits0References4
Prion
Prion
added 2016/08/02 4:59 p.m.18 views

Design/Logic Flaw

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention SMAP whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service hypervisor and VM crash by triggering a safety check...

4.9CVSS6.8AI score0.00639EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2015/10/30 3:59 p.m.16 views

CVE-2015-7813

Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk console messages when reporting unimplemented hypercalls, which allows local guests to cause a denial of service via a sequence of 1 HYPERVISORphysdevop hypercalls, which are not properly handled in the dophysdevop function in...

2.1CVSS8.4AI score0.00391EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2015/09/03 2:59 p.m.21 views

CVE-2015-6654

The xenmemaddtophysmapone function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and earlier does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page, which allows remote domains to cause a denial of service by leveraging permissions to map t...

2.1CVSS7.3AI score0.00405EPSS
Exploits0References3
Prion
Prion
added 2015/09/03 2:59 p.m.19 views

Denial of service

The xenmemaddtophysmapone function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and earlier does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page, which allows remote domains to cause a denial of service by leveraging permissions to map t...

2.1CVSS7AI score0.00405EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2015/08/12 2:59 p.m.5 views

CVE-2015-5166

Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice...

8.9AI score
Exploits0References7
NVD
NVD
added 2015/08/12 2:59 p.m.18 views

CVE-2015-5165

The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors...

9.3CVSS7.2AI score0.13288EPSS
Exploits0References19
OSV
OSV
added 2015/08/12 2:59 p.m.7 views

CVE-2015-5165

The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors...

6.8AI score
Exploits0References37
Prion
Prion
added 2015/08/12 2:59 p.m.28 views

Heap overflow

Heap-based buffer overflow in the IDE subsystem in QEMU, as used in Xen 4.5.x and earlier, when the container has a CDROM drive enabled, allows local guest users to execute arbitrary code on the host via unspecified ATAPI commands...

7.2CVSS8.1AI score0.0063EPSS
Exploits0References21Affected Software8
Prion
Prion
added 2015/08/12 2:59 p.m.24 views

Design/Logic Flaw

The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors...

9.3CVSS6.9AI score0.13288EPSS
Exploits0References19Affected Software24
Rows per page
Query Builder