Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

xen xen 4.6.2 vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3

CVE-2017-8905

Xen up to and including 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest OS users to execute arbitrary code on the host OS, aka XSA-215.
Xen Xen 4.6.0Xen Xen 4.6.1Xen Xen 4.6.2Xen Xen 4.6.3Xen Xen 4.6.4Xen Xen 4.6.5
6.5
CVSSv3

CVE-2017-10923

Xen up to and including 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.
Xen Xen 4.6.0Xen Xen 4.6.1Xen Xen 4.6.2Xen Xen 4.6.4Xen Xen 4.6.5Xen Xen 4.7.1Xen Xen 4.8.0Xen Xen 4.8.1
7.5
CVSSv3

CVE-2017-10916

The vCPU context-switch implementation in Xen up to and including 4.8.x improperly interacts with the Memory Protection Extensions (MPX) and Protection Key (PKU) features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220.
Xen Xen 4.5.0Xen Xen 4.5.1Xen Xen 4.5.2Xen Xen 4.5.3Xen Xen 4.5.5Xen Xen 4.6.0Xen Xen 4.6.1Xen Xen 4.6.2Xen Xen 4.6.4Xen Xen 4.6.5Xen Xen 4.7.1Xen Xen 4.8.0
6
CVSSv3

CVE-2017-15596

An issue exists in Xen 4.4.x up to and including 4.9.x allowing ARM guest OS users to cause a denial of service (prevent physical CPU usage) because of lock mishandling upon detection of an add-to-physmap error.
Xen Xen 4.4.0Xen Xen 4.4.1Xen Xen 4.4.2Xen Xen 4.4.3Xen Xen 4.4.4Xen Xen 4.5.0Xen Xen 4.5.1Xen Xen 4.5.2Xen Xen 4.5.3Xen Xen 4.5.4Xen Xen 4.5.5Xen Xen 4.6.0
5.5
CVSSv3

CVE-2017-14431

Memory leak in Xen 3.3 up to and including 4.8.x allows guest OS users to cause a denial of service (ARM or x86 AMD host OS memory consumption) by continually rebooting, because certain cleanup is skipped if no pass-through device was ever assigned, aka XSA-207.
Xen Xen 3.3.0Xen Xen 3.3.1Xen Xen 3.3.2Xen Xen 3.4.0Xen Xen 3.4.1Xen Xen 3.4.2Xen Xen 3.4.3Xen Xen 3.4.4Xen Xen 4.0.0Xen Xen 4.0.1Xen Xen 4.0.2Xen Xen 4.0.3
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-0998CVE-2025-26779unknownCVE-2025-1094CVE-2025-1336enituretechnologyunauthorizedCVE-2024-57970s2member prooliver pos – a woocommerce point of sale (pos)CVE-2024-40591race conditiondeserialization
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook