Xhyve Security Vulnerabilities and Issues — Xhyve CVE List

Lucene search

Xhyve ProjectXhyve

4 matches found

CVE•added 2022/08/03 4:15 p.m.•47 views

CVE-2022-35867

This vulnerability allows local attackers to escalate privileges on affected installations of xhyve. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the e1000 virtual device....

7.5CVSS7AI score0.00031EPSS

CVE•added 2022/09/07 5:15 p.m.•45 views

CVE-2022-36659

xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vi_pci_write(). This vulnerability allows attackers to cause a Denial of Service via unspecified vectors.

6.5CVSS6.3AI score0.00092EPSS

CVE•added 2022/09/07 5:15 p.m.•40 views

CVE-2022-36660

xhyve commit dfbe09b was discovered to contain a stack buffer overflow via the component pci_vtrnd_notify().

9.8CVSS9.7AI score0.00171EPSS

CVE•added 2022/09/07 5:15 p.m.•36 views

CVE-2022-36661

xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vi_pci_read(). This vulnerability allows attackers to cause a Denial of Service via unspecified vectors.

6.5CVSS6.3AI score0.00092EPSS