5.8 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
26.0%
The emulation of the instructions HLT, LGDT, LIDT, and LMSW fails to perform supervisor mode permission checks.
However these instructions are not usually handled by the emulator. Exceptions to this are
Malicious HVM guest user mode code may be able to crash the guest or escalate its own privilege to guest kernel mode.
Xen versions from at least 3.2.x onwards are vulnerable. Older versions have not been inspected.
Only user processes in HVM guests can take advantage of this vulnerability.