Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2016/11/22 12:47 p.m.28 views

CVE-2016-9382

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service guest OS crash by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode...

7.8CVSS4.7AI score0.00452EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/04/13 4:59 p.m.31 views

CVE-2016-3158

The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOT...

3.8CVSS6.8AI score0.0041EPSS
Exploits0References2
Prion
Prion
added 2016/04/13 4:59 p.m.31 views

Design/Logic Flaw

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

1.7CVSS3.9AI score0.00496EPSS
Exploits0References9Affected Software4
Prion
Prion
added 2016/04/13 4:59 p.m.34 views

Information disclosure

The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOT...

1.7CVSS3.9AI score0.00496EPSS
Exploits0References10Affected Software3
UbuntuCve
UbuntuCve
added 2016/04/13 4:59 p.m.24 views

CVE-2016-3159

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

3.8CVSS6.8AI score0.00399EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/04/13 4:0 p.m.37 views

CVE-2016-3159

The fpufxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits...

6AI score0.00399EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2016/04/13 4:0 p.m.55 views

CVE-2016-3158

The xrstor function in arch/x86/xstate.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits. NOT...

3.8CVSS3.4AI score0.0041EPSS
Exploits0
Cvelist
Cvelist
added 2014/11/19 6:0 p.m.35 views

CVE-2014-8594

The dommuupdate function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service NULL pointer dereference by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging...

6AI score0.02221EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2014/11/19 6:0 p.m.36 views

CVE-2014-8594

The dommuupdate function in arch/x86/mm.c in Xen 4.x through 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service NULL pointer dereference by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging...

5.4CVSS3AI score0.02221EPSS
Exploits0
NVD
NVD
added 2013/05/13 11:55 p.m.20 views

CVE-2013-1952

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which allows local guest domains to cause a denial of service interrupt injection via unspecified vector...

1.9CVSS6.1AI score0.00421EPSS
Exploits0References10
OSV
OSV
added 2013/05/13 11:55 p.m.9 views

CVE-2013-1952

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which allows local guest domains to cause a denial of service interrupt injection via unspecified vector...

6.1AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2012/12/13 11:53 a.m.33 views

CVE-2012-5510

Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service hypervisor crash via unspecified vectors...

4.7CVSS7.2AI score0.00417EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2012/12/13 11:0 a.m.36 views

CVE-2012-5510

Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service hypervisor crash via unspecified vectors...

4.7CVSS4.8AI score0.00417EPSS
Exploits0
Rows per page
Query Builder