Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-29487

An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and data are forwarded via RPC through message-switch to xapi. The watching logic in xenopsd sends one R...

7.8CVSS6.9AI score0.01428EPSS
Exploits0References3
Prion
Prion
added 2020/12/15 6:15 p.m.24 views

Design/Logic Flaw

An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and data are forwarded via RPC through message-switch to xapi. The watching logic in xenopsd sends one R...

7.8CVSS7.6AI score0.01428EPSS
Exploits0References2Affected Software1
Xen Project
Xen Project
added 2020/12/15 12:0 p.m.51 views

XAPI: guest-triggered excessive memory usage

ISSUE DESCRIPTION Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and data are forward via RPC through message-switch to xapi. The watching logic in xenopsd sends one RPC update containing all data, any time...

7.8CVSS1.2AI score0.01428EPSS
Exploits0
CNNVD
CNNVD
added 2020/12/15 12:0 a.m.7 views

Xen Security Vulnerabilities

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. Xen XAPI before 2020-12-15 A security...

7.8CVSS7.1AI score0.01428EPSS
Exploits0References6
NVD
NVD
added 2013/08/28 9:55 p.m.24 views

CVE-2013-2211

The libxenlight libxl toolstack library in Xen 4.0.x, 4.1.x, and 4.2.x uses weak permissions for xenstore keys for paravirtualised and emulated serial console devices, which allows local guest administrators to modify the xenstore value via unspecified vectors...

7.4CVSS6.1AI score0.00562EPSS
Exploits0References6
OSV
OSV
added 2013/08/28 9:55 p.m.2 views

DEBIAN-CVE-2013-2211

The libxenlight libxl toolstack library in Xen 4.0.x, 4.1.x, and 4.2.x uses weak permissions for xenstore keys for paravirtualised and emulated serial console devices, which allows local guest administrators to modify the xenstore value via unspecified vectors...

7.4CVSS6AI score0.00562EPSS
Exploits0References1
Prion
Prion
added 2013/08/28 9:55 p.m.25 views

Design/Logic Flaw

The libxenlight libxl toolstack library in Xen 4.0.x, 4.1.x, and 4.2.x uses weak permissions for xenstore keys for paravirtualised and emulated serial console devices, which allows local guest administrators to modify the xenstore value via unspecified vectors...

7.4CVSS6.6AI score0.00562EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder