xen

CVE-2017-10912 CRITICAL

Xen < 4.8.1 - Privilege Escalation via Page Transfer Mishandling

Jul 05, 2017

CVSS 10.0

EPSS 0.02

CVE-2017-8905 HIGH

Xen through 4.6.x - Arbitrary Code Execution via Failsafe Callback Mishandling

May 11, 2017

CVSS 8.8

EPSS 0.00

CVE-2017-8904 HIGH

Xen through 4.8.x - Arbitrary Code Execution via GNTTABOP_transfer Mishandling

May 11, 2017

CVSS 8.8

EPSS 0.00

CVE-2017-8903 HIGH

Xen through 4.8.x - Arbitrary Code Execution via IRET Hypercall

May 11, 2017

CVSS 8.8

EPSS 0.00

CVE-2017-7995 LOW

Xen < 4.2.5 - Information Disclosure via MMIO Range Access Permission Check

May 03, 2017

CVSS 3.8

EPSS 0.00

CVE-2017-7228 HIGH

Xen 4.4.x-4.8.x - Improper Validation of Array Index in XENMEM_exchange

Apr 04, 2017

CVSS 8.2

EPSS 0.01

CVE-2016-9818 MEDIUM

Xen through 4.7.x - Denial of Service via Asynchronous Abort Handling

Feb 27, 2017

CVSS 6.5

EPSS 0.00

CVE-2016-9817 MEDIUM

Xen through 4.7.x - Denial of Service via ARM Guest Abort Handling

Feb 27, 2017

CVSS 6.5

EPSS 0.00

CVE-2016-9816 MEDIUM

Xen through 4.7.x - Denial of Service via Asynchronous Abort at EL2

Feb 27, 2017

CVSS 6.5

EPSS 0.00

CVE-2016-9815 MEDIUM

Xen through 4.7.x - Denial of Service via Asynchronous Abort

Feb 27, 2017

CVSS 6.5

EPSS 0.00

CVE-2016-9384 MEDIUM

Xen 4.7 - Exposure of Sensitive Host Information via 32-bit ELF Symbol Table

Feb 22, 2017

CVSS 6.5

EPSS 0.00

CVE-2016-9378 MEDIUM

Xen 4.5.x-4.7.x - Denial of Service via Software Interrupt Delivery

Feb 22, 2017

CVSS 5.5

EPSS 0.00

CVE-2016-9377 MEDIUM

Xen 4.5.x-4.7.x - Denial of Service via IDT Entry Miscalculation

Feb 22, 2017

CVSS 5.5

EPSS 0.00

CVE-2016-9932 LOW

Xen 3.3.x-4.7.x - Unauthorized Sensitive Information Exposure via CMPXCHG8B Emulation

Jan 26, 2017

CVSS 3.3

EPSS 0.00

CVE-2016-10025 MEDIUM

Xen 4.6.x-4.8.x - Denial of Service via VMFUNC Emulation NULL Pointer Dereference

Jan 26, 2017

CVSS 5.5

EPSS 0.00

CVE-2016-10024 MEDIUM

Xen < 4.8.0 - Denial of Service via Asynchronous Instruction Stream Modification

Jan 26, 2017

CVSS 6.0

EPSS 0.00

CVE-2016-10013 HIGH

Xen < 4.8.0 - Privilege Escalation via SYSCALL Singlestep Mishandling

Jan 26, 2017

CVSS 7.8

EPSS 0.00

CVE-2016-9386 HIGH

Citrix XenServer - Privilege Escalation via x86 NULL Segment Handling

Jan 23, 2017

CVSS 7.8

EPSS 0.00

CVE-2016-9385 MEDIUM

Xen 4.4.x-4.7.x - Denial of Service via x86 Segment Base Write Emulation

Jan 23, 2017

CVSS 6.0

EPSS 0.00

CVE-2016-9383 HIGH

Xen - Memory Corruption via Bit Test Instruction Emulation

Jan 23, 2017

CVSS 8.8

EPSS 0.00

CVE-2016-9382 HIGH

Xen 4.0.x-4.7.x - Privilege Escalation

Jan 23, 2017

CVSS 7.8

EPSS 0.00

CVE-2016-9380 HIGH

Xen - Arbitrary File Read and Delete via pygrub Boot Loader NUL Byte Handling

Jan 23, 2017

CVSS 7.5

EPSS 0.00

CVE-2016-9379 HIGH

Xen - Arbitrary File Read and Delete via pygrub Boot Loader S-expression Handling

Jan 23, 2017

CVSS 7.9

EPSS 0.00

CVE-2016-7777 MEDIUM

Xen < 4.7.0 - Local FPU/MMX/XMM Register State Leak via Instruction Modification

Oct 07, 2016

CVSS 6.3

EPSS 0.00

CVE-2016-7154 MEDIUM

Xen 4.4.x - Use-After-Free in FIFO Event Channel Code

Sep 21, 2016

CVSS 6.7

EPSS 0.00