Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xen xen - vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2021-28706
guests may exceed their designated memory limit When a guest is permitted to have close to 16TiB of memory, it may be able to issue hypercalls to increase its memory allocation beyond the administrator established limit. This is a result of a calculation done with 32-bit precisio...
Xen Xen
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 11.0
7.8
CVSSv2
CVE-2020-29487
An issue exists in Xen XAPI prior to 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and data are forwarded via RPC through message-switch to xapi. The watching logic in xenopsd ...
Xen Xapi
7.8
CVSSv2
CVE-2015-8341
The libxl toolstack library in Xen 4.1.x up to and including 4.6.x does not properly release mappings of files used as kernels and initial ramdisks when managing multiple domains in the same process, which allows malicious users to cause a denial of service (memory and disk consu...
Xen Xen 4.1.1
Xen Xen 4.1.2
Xen Xen 4.2.0
Xen Xen 4.2.3
Xen Xen 4.3.4
Xen Xen 4.4.0
Xen Xen 4.6.0
Xen Xen 4.1.3
Xen Xen 4.1.4
Xen Xen 4.2.4
Xen Xen 4.2.5
Xen Xen 4.4.1
Xen Xen 4.4.2
Xen Xen 4.1.0
Xen Xen 4.1.6.1
Xen Xen 4.2.2
Xen Xen 4.2.1
Xen Xen 4.3.2
Xen Xen 4.3.3
Xen Xen 4.5.1
Xen Xen 4.5.2
Xen Xen 4.1.5
7.8
CVSSv2
CVE-2015-4104
Xen 3.3.x up to and including 4.5.x does not properly restrict access to PCI MSI mask bits, which allows local x86 HVM guest users to cause a denial of service (unexpected interrupt and host crash) via unspecified vectors.
Xen Xen 3.3.2
Xen Xen 3.4.0
Xen Xen 4.0.2
Xen Xen 4.0.3
Xen Xen 4.1.5
Xen Xen 4.1.6.1
Xen Xen 4.2.0
Xen Xen 4.3.4
Xen Xen 4.4.0
Xen Xen 3.4.3
Xen Xen 3.4.4
Xen Xen 4.1.1
Xen Xen 4.1.2
Xen Xen 4.2.3
Xen Xen 4.3.0
Xen Xen 3.3.0
Xen Xen 3.3.1
Xen Xen 4.0.0
Xen Xen 4.0.1
Xen Xen 4.1.3
Xen Xen 4.1.4
Xen Xen 4.3.1
7.8
CVSSv2
CVE-2015-0361
Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows remote domains to cause a denial of service (system crash) via a crafted hypercall during HVM guest teardown.
Xen Xen 4.3.1
Xen Xen 4.3.2
Xen Xen 4.2.3
Xen Xen 4.2.4
Xen Xen 4.4.1
Xen Xen 4.2.5
Xen Xen 4.3.0
Xen Xen 4.2.0
Xen Xen 4.2.1
Xen Xen 4.2.2
Xen Xen 4.3.3
Xen Xen 4.4.0
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
7.8
CVSSv2
CVE-2013-1059
net/ceph/auth_none.c in the Linux kernel up to and including 3.10 allows remote malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via an auth_reply message that triggers an attempted build_request op...
Linux Linux Kernel 3.10
Linux Linux Kernel
Canonical Ubuntu Linux 12.04
7.8
CVSSv2
CVE-2008-5025
Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catalog.c in the Linux kernel prior to 2.6.28-rc1 allows malicious users to cause a denial of service (memory corruption or system crash) via an hfs filesystem image with an invalid catalog namelength field, ...
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.24.7
Linux Linux Kernel 2.6.23.13
Linux Linux Kernel 2.6.24.2
Linux Linux Kernel 2.4.36.6
Linux Linux Kernel 2.6.26.5
Linux Linux Kernel
Linux Linux Kernel 2.6.22.21
Linux Linux Kernel 2.6.25.12
Linux Linux Kernel 2.6.25.5
Linux Linux Kernel 2.6.23.8
Linux Linux Kernel 2.6.25
Linux Linux Kernel 2.6.22.12
Linux Linux Kernel 2.6.25.8
Linux Linux Kernel 2.6.21.6
Linux Linux Kernel 2.4.36.2
Linux Linux Kernel 2.6.22.1
Linux Linux Kernel 2.6.23.16
7.8
CVSSv2
CVE-2008-5033
The chip_command function in drivers/media/video/tvaudio.c in the Linux kernel 2.6.25.x prior to 2.6.25.19, 2.6.26.x prior to 2.6.26.7, and 2.6.27.x prior to 2.6.27.3 allows malicious users to cause a denial of service (NULL function pointer dereference and OOPS) via unknown vect...
Linux Linux Kernel 2.6.27.1
Linux Linux Kernel 2.6.26.5
Linux Linux Kernel 2.6.25.5
Linux Linux Kernel 2.6.25.18
Linux Linux Kernel 2.6.26.6
Linux Linux Kernel 2.6.26
Linux Linux Kernel 2.6.26.3
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.27
Linux Linux Kernel 2.6.25.13
Linux Linux Kernel 2.6.25.3
Linux Linux Kernel 2.6.26.2
Linux Linux Kernel 2.6.25.15
Linux Linux Kernel 2.6.26.1
Linux Linux Kernel 2.6.25.8
Linux Linux Kernel 2.6.25.16
Linux Linux Kernel 2.6.25.17
Linux Linux Kernel 2.6.25.10
Linux Linux Kernel 2.6.25.1
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.27.2
7.8
CVSSv2
CVE-2008-4933
Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in the Linux kernel prior to 2.6.28-rc1 allows malicious users to cause a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog namelength field, relat...
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.24.7
Linux Linux Kernel 2.6.23.13
Linux Linux Kernel 2.6.24.2
Linux Linux Kernel 2.4.36.6
Linux Linux Kernel 2.6.26.5
Linux Linux Kernel
Linux Linux Kernel 2.6.22.21
Linux Linux Kernel 2.6.25.12
Linux Linux Kernel 2.6.25.5
Linux Linux Kernel 2.6.23.8
Linux Linux Kernel 2.6.25
Linux Linux Kernel 2.6.22.12
Linux Linux Kernel 2.6.25.8
Linux Linux Kernel 2.6.21.6
Linux Linux Kernel 2.4.36.2
Linux Linux Kernel 2.6.22.1
Linux Linux Kernel 2.6.23.16
7.8
CVSSv2
CVE-2008-4934
The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel prior to 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows malicious users to cause a denial of service (system crash) via a crafted...
Linux Linux Kernel
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »