Published: 01/11/2018 Updated: 24/01/2019

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 8.8 | Impact Score: 6 | Exploitability Score: 2

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

An issue exists in Xen 4.9.x up to and including 4.11.x, on Intel x86 platforms, allowing x86 HVM and PVH guests to cause a host OS denial of service (NULL pointer dereference) or possibly have unspecified other impact because nested VT-x is not properly restricted.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xen xen

An issue was discovered in Xen 49x through 411x, on Intel x86 platforms, allowing x86 HVM and PVH guests to cause a host OS denial of service (NULL pointer dereference) or possibly have unspecified other impact because nested VT-x is not properly restricted ...

Description of Problem A security issue has been identified in Citrix XenServer that may allow a malicious administrator of an HVM guest VM to crash the host This issue affects the following versions of Citrix XenServer:  Citrix XenServer 76 Citrix XenServer 75 Citrix XenServer 71 LTSR CU1  The following vulnerabilities have been addr ...

CWE-476 https://xenbits.xen.org/xsa/advisory-278.html http://www.securitytracker.com/id/1042021 http://www.securityfocus.com/bid/105817 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2018-18883

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-18883

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect