xen

496 tracked vulnerabilities.

CVE-2018-12891 MEDIUM
Xen <4.10.x - Denial of Service
Jul 02, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-10982 HIGH
Xen < 4.10.1 - Denial of Service or Privilege Escalation via vHPET Interrupt Injection
May 10, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-10981 MEDIUM
Debian Linux < 4.10.1 - Infinite Loop
May 10, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-8897 HIGH
Intel 64 and IA-32 Architectures - Privilege Escalation
May 08, 2018
CVSS 7.8
EPSS 0.25
CVE-2018-10472 MEDIUM
Xen < 4.10.1 - Unauthorized File Read via QMP CDROM Insertion
Apr 27, 2018
CVSS 5.6
EPSS 0.00
CVE-2018-10471 MEDIUM
Xen < 4.10.1 - Denial of Service via Unexpected INT 80 Processing
Apr 27, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-7542 MEDIUM
Xen 4.8.0-4.10.0 - Denial of Service via Local APIC Mishandling
Feb 27, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-7541 HIGH
Xen < 4.10.0 - Denial of Service or Privilege Escalation via Grant-Table Transition
Feb 27, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-7540 MEDIUM
Xen < 4.10.0 - Denial of Service via Non-Preemptable L3/L4 Pagetable Freeing
Feb 27, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-5244 MEDIUM
Xen >=4.10.0 - Denial of Service via MSR Emulation Tracking Structure
Jan 05, 2018
CVSS 6.5
EPSS 0.00
CVE-2017-2620 MEDIUM
QEMU < 2.8.0 - Out-of-bounds Read in Cirrus VGA Emulator
Jul 27, 2018
CVSS 5.5
EPSS 0.02
CVE-2017-2615 MEDIUM
QEMU < 2.8.0 - Out-of-bounds Read in Cirrus VGA Bitblt Copy
Jul 03, 2018
CVSS 5.5
EPSS 0.01
CVE-2017-17566 HIGH
Xen < 4.9.1 - Denial of Service or Privilege Escalation via Shadow Mode Auxiliary Page Mapping
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17565 MEDIUM
Xen < 4.9.1 - Denial of Service via M2P Assertion Failure
Dec 12, 2017
CVSS 5.6
EPSS 0.00
CVE-2017-17564 HIGH
Xen < 4.9.1 - Denial of Service and Privilege Escalation via Shadow Mode Reference Counting
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17563 HIGH
Xen < 4.9.1 - Denial of Service and Privilege Escalation via Shadow Mode Reference-Count Overflow
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17046 MEDIUM
Xen < 4.9.1 - Information Exposure via ARM DRAM Handling
Nov 28, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-17045 HIGH
Xen < 4.9.1 - Use-After-Free via Populate on Demand P2M Error Handling
Nov 28, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-17044 MEDIUM
Xen < 4.9.1 - Denial of Service via Populate on Demand Error Mishandling
Nov 28, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15597 CRITICAL
Xen < 4.9.0 - Denial of Service via Grant Copying Memory Corruption
Oct 30, 2017
CVSS 9.1
EPSS 0.01
CVE-2017-15596 MEDIUM
Xen 4.4.x-4.9.x - Denial of Service via Lock Mishandling on ARM
Oct 18, 2017
CVSS 6.0
EPSS 0.00
CVE-2017-15595 HIGH
Xen < 4.9.0 - Denial of Service via Page-Table Stacking
Oct 18, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-15594 HIGH
Xen < 4.9.0 - Denial of Service via IDT Mishandling During CPU Hotplugging
Oct 18, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-15593 MEDIUM
Xen < 4.9.0 - Denial of Service via Memory Leak in Reference Count Handling
Oct 18, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15592 HIGH
Xen < 4.9.0 - Denial of Service or Privilege Escalation via Self-Linear Shadow Mapping Mishandling
Oct 18, 2017
CVSS 8.8
EPSS 0.00
Products
xen 490 Xen 6 xapi 3 qemu 1 xen-unstable 1 xen_flask_module 1
Quick Filters
Critical CVEs With Exploits In CISA KEV