6.1 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
61.8%
Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, does
not properly configure VT-d when supporting a device that is behind a
legacy PCI Bridge, which allows local guests to cause a denial of service
to other guests by injecting an interrupt.
Author | Note |
---|---|
mdeslaur | hypervisor packages are in universe. For issues in the hypervisor, add appropriate tags to each section, ex: Tags_xen: universe-binary |
jdstrand | Xen Security Advisory 33 |
mdeslaur | only 4.0 and + are vulnerable |