Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

CVE-2016-6258 vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3

CVE-2016-6258

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and previous versions allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.
Xen Xen 3.4.0Xen Xen 3.4.2Xen Xen 3.4.3Xen Xen 3.4.4Xen Xen 4.0.0Xen Xen 4.0.1Xen Xen 4.0.3Xen Xen 4.0.4Xen Xen 4.1.0Xen Xen 4.1.1Xen Xen 4.1.2Xen Xen 4.1.3
8.4
CVSSv3

CVE-2016-4480

The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and previous versions does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of me...
Oracle Vm Server 3.2Oracle Vm Server 3.3Oracle Vm Server 3.4Xen Xen
7.2
CVSSv2

CVE-2015-8338

Xen 4.6.x and previous versions does not properly enforce limits on page order inputs for the (1) XENMEM_increase_reservation, (2) XENMEM_populate_physmap, (3) XENMEM_exchange, and possibly other HYPERVISOR_memory_op suboperations, which allows ARM guest OS administrators to caus...
Xen Xen
6.7
CVSSv3

CVE-2016-4962

The libxl device-handling in Xen 4.6.x and previous versions allows local OS guest administrators to cause a denial of service (resource consumption or management facility confusion) or gain host OS privileges by manipulating information in guest controlled areas of xenstore.
Oracle Vm Server 3.3Oracle Vm Server 3.4Xen Xen 4.3.0Xen Xen 4.3.1Xen Xen 4.3.2Xen Xen 4.3.3Xen Xen 4.3.4Xen Xen 4.4.0Xen Xen 4.4.1Xen Xen 4.4.2Xen Xen 4.4.3Xen Xen 4.4.4
5.6
CVSSv3

CVE-2016-5242

The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x up to and including 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (NULL pointer dereference and host OS crash) by creating concurrent domains and holding references to them,...
Xen Xen 4.4.0Xen Xen 4.4.1Xen Xen 4.4.2Xen Xen 4.4.3Xen Xen 4.4.4Xen Xen 4.5.0Xen Xen 4.5.1Xen Xen 4.5.2Xen Xen 4.5.3Xen Xen 4.6.0Xen Xen 4.6.1
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2024-6665XPath injectionjavascript logicCVE-2025-47784buffer overflowCVE-2024-9599XXECVE-2023-21563CVE-2025-1454event calendarjetpack boostCVE-2025-32756webtoffee-gdpr-cookie-consent
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook