Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xen xen 3.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-18425
An issue exists in Xen up to and including 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x86 PV emulation. When emulating certain PV guest operations, descriptor table ...
Xen Xen
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2020-15565
An issue exists in Xen up to and including 4.13.x, allowing x86 Intel HVM guest OS users to cause a host OS denial of service or possibly gain privileges because of insufficient cache write-back under VT-d. When page tables are shared between IOMMU and CPU, changes to them requir...
Xen Xen
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.1
Opensuse Leap 15.2
8.8
CVSSv3
CVE-2016-3960
Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping.
Xen Xen -
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Oracle Vm Server 3.4
Oracle Vm Server 3.2
Oracle Vm Server 3.3
8.4
CVSSv3
CVE-2016-4480
The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and previous versions does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of me...
Oracle Vm Server 3.4
Oracle Vm Server 3.2
Oracle Vm Server 3.3
Xen Xen
7.8
CVSSv3
CVE-2021-27365
An issue exists in the Linux kernel up to and including 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is associated with iSCSI, and has a length ...
Linux Linux Kernel
Debian Debian Linux 9.0
Oracle Tekelec Platform Distribution
Netapp Solidfire Baseboard Management Controller Firmware -
9 Github repositories
7.8
CVSSv3
CVE-2021-26930
An issue exists in the Linux kernel 3.11 up to and including 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be d...
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
7.1
CVSSv3
CVE-2021-27364
An issue exists in the Linux kernel up to and including 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages.
Linux Linux Kernel
Debian Debian Linux 9.0
Netapp Solidfire Baseboard Management Controller Firmware -
Oracle Tekelec Platform Distribution
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
9 Github repositories
6.5
CVSSv3
CVE-2021-28038
An issue exists in the Linux kernel up to and including 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of se...
Linux Linux Kernel 5.12
Linux Linux Kernel
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Solidfire Baseboard Management Controller Firmware -
5.6
CVSSv3
CVE-2018-3640
Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE), Var...
Intel Xeon E7 8870
Intel Xeon E7 8867l
Intel Xeon E7 8860
Intel Xeon E7 8850
Intel Xeon E7 8837
Intel Xeon E7 8830
Intel Xeon E7 4870
Intel Xeon E7 4860
Intel Xeon E7 4850
Intel Xeon E7 4830
Intel Xeon E7 4820
Intel Xeon E7 4807
Intel Xeon E7 2870
Intel Xeon E7 2860
Intel Xeon E7 2850
Intel Xeon E7 2830
Intel Xeon E7 2820
Intel Xeon E7 2803
Intel Xeon E7 8894 V4
Intel Xeon E7 8893 V4
Intel Xeon E7 8891 V4
Intel Xeon E7 8890 V4
3 Github repositories
4 Articles
5.5
CVSSv3
CVE-2021-26931
An issue exists in the Linux kernel 2.6.39 up to and including 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memo...
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »