CVE-2017-15588

Published: 18/10/2017 Updated: 19/10/2018

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

CVSS v3 Base Score: 7.8 | Impact Score: 6 | Exploitability Score: 1.1

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

An issue exists in Xen up to and including 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xen xen 4.9.0

An issue was discovered in Xen through 49x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry ...

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServer 72 The following vulnerabilities have been addres ...

CWE-362 https://xenbits.xen.org/xsa/advisory-241.html http://www.securitytracker.com/id/1039568 http://www.securityfocus.com/bid/101490 https://support.citrix.com/article/CTX228867 https://www.debian.org/security/2017/dsa-4050 https://security.gentoo.org/glsa/201801-14 https://lists.debian.org/debian-lts-announce/2017/11/msg00027.html https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-15588

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-15588

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect