4.3 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:P/I:N/A:P
0.002 Low
EPSS
Percentile
55.3%
oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly
consider the state of the Xenstore ring during read operations, which
allows guest OS users to cause a denial of service (daemon crash and
host-control outage, or memory consumption) or obtain sensitive
control-plane data by leveraging guest administrative access.
Author | Note |
---|---|
mdeslaur | This is XSA-38 Only affects 4.1+ |