xen
511 tracked vulnerabilities.
CVE-2017-2620
MEDIUM
QEMU < 2.8.0 - Out-of-bounds Read in Cirrus VGA Emulator
Jul 27, 2018
CVSS 5.5
EPSS 0.04
CVE-2017-2615
MEDIUM
QEMU < 2.8.0 - Out-of-bounds Read in Cirrus VGA Bitblt Copy
Jul 03, 2018
CVSS 5.5
EPSS 0.04
CVE-2017-17566
HIGH
Xen < 4.9.1 - Denial of Service or Privilege Escalation via Shadow Mode Auxiliary Page Mapping
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17565
MEDIUM
Xen < 4.9.1 - Denial of Service via M2P Assertion Failure
Dec 12, 2017
CVSS 5.6
EPSS 0.00
CVE-2017-17564
HIGH
Xen < 4.9.1 - Denial of Service and Privilege Escalation via Shadow Mode Reference Counting
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17563
HIGH
Xen < 4.9.1 - Denial of Service and Privilege Escalation via Shadow Mode Reference-Count Overflow
Dec 12, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-17046
MEDIUM
Xen < 4.9.1 - Information Exposure via ARM DRAM Handling
Nov 28, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-17045
HIGH
Xen < 4.9.1 - Use-After-Free via Populate on Demand P2M Error Handling
Nov 28, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-17044
MEDIUM
Xen < 4.9.1 - Denial of Service via Populate on Demand Error Mishandling
Nov 28, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15597
CRITICAL
Xen < 4.9.0 - Denial of Service via Grant Copying Memory Corruption
Oct 30, 2017
CVSS 9.1
EPSS 0.03
CVE-2017-15596
MEDIUM
Xen 4.4.x-4.9.x - Denial of Service via Lock Mishandling on ARM
Oct 18, 2017
CVSS 6.0
EPSS 0.00
CVE-2017-15595
HIGH
Xen < 4.9.0 - Denial of Service via Page-Table Stacking
Oct 18, 2017
CVSS 8.8
EPSS 0.02
CVE-2017-15594
HIGH
Xen < 4.9.0 - Denial of Service via IDT Mishandling During CPU Hotplugging
Oct 18, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-15593
MEDIUM
Xen < 4.9.0 - Denial of Service via Memory Leak in Reference Count Handling
Oct 18, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15592
HIGH
Xen < 4.9.0 - Denial of Service or Privilege Escalation via Self-Linear Shadow Mapping Mishandling
Oct 18, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-15591
MEDIUM
Xen 4.5.x-4.9.x - Denial of Service via DMOP Map/Unmap Implementation
Oct 18, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15590
HIGH
Xen through 4.9.x - Denial of Service or Privilege Escalation via MSI Mapping Mishandling
Oct 18, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-15589
MEDIUM
Xen through 4.9.x - Unauthenticated Exposure of Sensitive Information via Intercepted I/O Operations
Oct 18, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-15588
HIGH
Xen through 4.9.x - Race Condition Leading to Arbitrary Code Execution via Stale TLB Entry
Oct 18, 2017
CVSS 7.8
EPSS 0.00
CVE-2017-14431
MEDIUM
Xen 3.3-4.8.x - Denial of Service via Memory Leak in Guest Reboot Handling
Sep 13, 2017
CVSS 5.5
EPSS 0.00
CVE-2017-14319
HIGH
Xen < 4.9.0 - Grant Unmapping Page Table Desynchronization
Sep 12, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-14318
MEDIUM
Xen 4.5.x-4.9.x - Privilege Escalation
Sep 12, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-14317
MEDIUM
Xen < 4.9.0 - Denial of Service via cxenstored Double-Free Race Condition
Sep 12, 2017
CVSS 5.6
EPSS 0.00
CVE-2017-14316
HIGH
Xen < 4.9.0 - Out-of-bounds Read via MEMF_get_node Parameter
Sep 12, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-12137
HIGH
Xen - Privilege Escalation via map_grant_ref in arch/x86/mm.c
Aug 24, 2017
CVSS 8.8
EPSS 0.00