Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10194

Malware in sbrugna...

6.5CVSS7.3AI score0.00386EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.1 views

SUSE CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS8.6AI score0.00386EPSS
Exploits0References5
Xen Project
Xen Project
added 2017/10/12 12:0 p.m.544 views

x86: Incorrect handling of self-linear shadow mappings with translated guests

ISSUE DESCRIPTION The shadow pagetable code uses linear mappings to inspect and modify the shadow pagetables. A linear mapping which points back to itself is known as self-linear. For translated guests, the shadow linear mappings being in a separate address space are not intended to be self-linea...

8.8CVSS0.1AI score0.0043EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2017/08/15 4:29 p.m.29 views

CVE-2017-12855

Xen maintains the GTFread,writing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the...

6.5CVSS6.9AI score0.00398EPSS
Exploits0References2
NVD
NVD
added 2017/02/27 10:59 p.m.17 views

CVE-2016-9815

Xen through 4.7.x allows local ARM guest OS users to cause a denial of service host panic by sending an asynchronous abort...

6.5CVSS6.4AI score0.00464EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/02/27 10:59 p.m.32 views

CVE-2016-9817

Xen through 4.7.x allows local ARM guest OS users to cause a denial of service host crash via vectors involving a 1 data or 2 prefetch abort with the ESREL2.EA bit set...

6.5CVSS6.8AI score0.00464EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/02/22 4:59 p.m.29 views

CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS6.9AI score0.00386EPSS
Exploits0References2
Prion
Prion
added 2017/02/22 4:59 p.m.21 views

Design/Logic Flaw

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

2.1CVSS6.1AI score0.00386EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2017/02/22 4:59 p.m.26 views

CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS6.1AI score0.00386EPSS
Exploits0References5
OSV
OSV
added 2017/02/22 4:59 p.m.26 views

CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS6.2AI score
Exploits0References5
Debian CVE
Debian CVE
added 2017/02/22 4:0 p.m.42 views

CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS1.9AI score0.00386EPSS
Exploits0
Prion
Prion
added 2017/01/26 3:59 p.m.30 views

Null pointer dereference

VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions aka SVM allows local HVM guest OS users to cause a denial of service hypervisor crash by leveraging a missing NULL pointer check...

2.1CVSS6.5AI score0.00451EPSS
Exploits0References4Affected Software2
RedhatCVE
RedhatCVE
added 2016/11/22 12:47 p.m.33 views

CVE-2016-9384

Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table...

6.5CVSS1.9AI score0.00386EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/10/07 2:59 p.m.34 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS7AI score0.00303EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2016/10/04 1:17 p.m.32 views

CVE-2016-7777

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it...

6.3CVSS4.8AI score0.00303EPSS
Exploits0References2
NVD
NVD
added 2016/09/21 2:25 p.m.24 views

CVE-2016-7094

Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...

4.1CVSS5.4AI score0.00392EPSS
Exploits0References8
Prion
Prion
added 2016/09/21 2:25 p.m.26 views

Buffer overflow

Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update...

1.5CVSS6.8AI score0.00392EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2016/09/21 2:25 p.m.23 views

Design/Logic Flaw

Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation...

7.2CVSS6.9AI score0.00425EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2016/09/21 2:0 p.m.87 views

CVE-2016-7094

CVE-2016-7094 is a buffer overflow in Xen up to 4.7.x and earlier. It affects Xen’s x86 HVM guests running with shadow paging, where a guest administrator (local) can trigger a pagetable update to cause a Denial of Service on the host. The underlying issue is an overflow in the shadow pagetable h...

4.1CVSS5.4AI score0.00392EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder