Xenserver@6.0 Security Vulnerabilities and Issues — Xenserver@6.0 CVE List

Lucene search

CitrixXenserver6.0

3 matches found

CVE•added 2016/08/02 4:59 p.m.•75 views

CVE-2016-6258

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.

8.8CVSS6.8AI score0.00112EPSS

CVE•added 2016/04/13 3:59 p.m.•65 views

CVE-2015-8555

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors.

8.6CVSS7.4AI score0.00551EPSS

CVE•added 2016/08/02 4:59 p.m.•60 views

CVE-2016-6259

Xen 4.5.x through 4.7.x do not implement Supervisor Mode Access Prevention (SMAP) whitelisting in 32-bit exception and event delivery, which allows local 32-bit PV guest OS kernels to cause a denial of service (hypervisor and VM crash) by triggering a safety check.

6.2CVSS6AI score0.00195EPSS