Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.3
CVSSv2

CVE-2014-7188

Published: 02/10/2014 Updated: 30/10/2018
CVSS v2 Base Score: 8.3 | Impact Score: 10 | Exploitability Score: 6.5
VMScore: 739
Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Xen

Vulnerability Summary

The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 up to and including 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other guests via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

xen xen 4.1.1

xen xen 4.1.2

xen xen 4.1.3

xen xen 4.2.3

xen xen 4.3.0

xen xen 4.1.0

xen xen 4.2.1

xen xen 4.2.2

xen xen 4.1.6.1

xen xen 4.2.0

xen xen 4.4.0

xen xen 4.4.1

xen xen 4.1.4

xen xen 4.1.5

xen xen 4.3.1

Vendor Advisories

Debian Security Advisories: DSA-3041-1 xen -- security update
Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation For the stable distribution (wheezy), these problems have been fixed in version 414-3+deb7u3 For the unstable distribution (sid), these problems will be fixed soon We recommend t ...
Red Hat: CVE-2014-7188
The hvm_msr_read_intercept function in arch/x86/hvm/hvmc in Xen 41 through 44x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other guests via unspecified vectors ...

Recent Articles

Xen sticks pin in bug behind Rackspace GLOBAL CLOUD REBOOT
The Register • John Leyden • 01 Oct 2014

Anatomy of a nasty

Details of the mysterious Xen vulnerability, which prompted the Amazon AWS/Rackspace cloud reboots late last week, have been revealed, with patches already available. The CVE-2014-7188 vulnerability creates a way to trick the hypervisor into reading unallocated memory. "A buggy or malicious HVM [hardware virtual machine] guest can crash the host or read data relating to other guests or the hypervisor itself," an advisory by Xen developers explained. Fortunately, the flaw, discovered by Jan Beuli...

Read more...

References

CWE-399http://xenbits.xen.org/xsa/advisory-108.htmlhttp://secunia.com/advisories/61664http://www.securitytracker.com/id/1030936http://www.securityfocus.com/bid/70198http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140199.htmlhttp://support.citrix.com/article/CTX200218http://secunia.com/advisories/61858http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140418.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2014-October/140483.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.htmlhttp://www.debian.org/security/2014/dsa-3041http://support.citrix.com/article/CTX201794http://security.gentoo.org/glsa/glsa-201412-42.xmlhttp://secunia.com/advisories/61890http://www.c7zero.info/stuff/csw2017_ExploringYourSystemDeeper_updated.pdfhttps://exchange.xforce.ibmcloud.com/vulnerabilities/96785https://nvd.nist.govhttps://www.debian.org/security/./dsa-3041https://access.redhat.com/security/cve/cve-2014-7188
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook