5.2 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
26.1%
The locks page_alloc_lock and grant_table.lock are not always taken in the same order. This opens the possibility of deadlock.
A malicious guest administrator can deny service to the entire host.
Xen versions going back to at least Xen 3.2 are vulnerable.
To exploit the vulnerability, the attacker must have control of more than one vcpu, either by controlling a malicious multi-vcpu guest, or by controlling more than one guest.