CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
EPSS
Percentile
30.6%
Xen 3.1.1 does not prevent modification of the CR4 TSC from applications,
which allows pv guests to cause a denial of service (crash).
Author | Note |
---|---|
mdeslaur | code in 3.2 and 3.3 doesn’t look vulnerable |