WinPVDrivers: Excessive permissions on user-exposed devices

ISSUE DESCRIPTION The Windows PV drivers expose various facilities to userspace. Several of these have no security descriptor, and are therefore fully accessible to unprivileged users. These are: 1. XenCons, CVE-2025-27462 2. XenIface, CVE-2025-27463 3. XenBus, CVE-2025-27464 IMPACT Unprivileged...

Updates to XenIface Windows I/O driver - For Citrix Hypervisor and XenServer

Who Should Read This Article? This information is for customers using Citrix Hypervisor or XenServer who are entitled to receive automatic Windows I/O driver updates on their Windows VMs. Latest version The following versions of XenIface are the latest that are available through Windows Automatic...

Time synchronization issues on Windows VMs with the 9.x Citrix VM Tools

On Windows VMs with the xeniface 9.0.0.11 or 9.1.0.4 driver installed, the VM time can become unsynchronized when the time set by the Citrix VM Tools conflicts with the Windows VM's own time synchronization for example, using Active Directory or NTP...