xen

496 tracked vulnerabilities.

CVE-2016-7094 MEDIUM
Xen < 4.7.0 - Denial of Service via Pagetable Update
Sep 21, 2016
CVSS 4.1
EPSS 0.00
CVE-2016-7093 HIGH
Xen 4.5.3, 4.6.3, and 4.7.x - Memory Corruption via Instruction Pointer Truncation
Sep 21, 2016
CVSS 8.2
EPSS 0.00
CVE-2016-7092 HIGH
Xen - Privilege Escalation via L3 Recursive Pagetables
Sep 21, 2016
CVSS 8.2
EPSS 0.00
CVE-2016-6259 MEDIUM
Xen 4.5.x-4.7.x - Denial of Service via 32-bit Exception Event Delivery
Aug 02, 2016
CVSS 6.2
EPSS 0.00
CVE-2016-6258 HIGH
Xen <= 4.7.x - Authenticated Privilege Escalation via PV Pagetable Entry Update
Aug 02, 2016
CVSS 8.8
EPSS 0.00
CVE-2016-5242 MEDIUM
Xen 4.4.x-4.6.x - Denial of Service via VMID Exhaustion
Jun 07, 2016
CVSS 5.6
EPSS 0.00
CVE-2016-4963 MEDIUM
Xen through 4.6.x - Denial of Service via libxl Device-Handling
Jun 07, 2016
CVSS 4.7
EPSS 0.00
CVE-2016-4962 MEDIUM
Oracle VM Server - Denial of Service and Privilege Escalation via libxl Device-Handling
Jun 07, 2016
CVSS 6.7
EPSS 0.00
CVE-2016-4480 HIGH
Oracle VM Server - Privilege Escalation via Page Table Entry Handling
May 18, 2016
CVSS 8.4
EPSS 0.00
CVE-2016-3960 HIGH
Xen - Integer Overflow in x86 Shadow Pagetable Code
Apr 19, 2016
CVSS 8.8
EPSS 0.00
CVE-2016-3961 MEDIUM
Xen < 4.5.3 and Linux Kernel through 4.5.x - Denial of Service via hugetlbfs Access in x86 PV Guests
Apr 15, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-3159 LOW
Oracle VM Server - Information Disclosure via FPU Register Handling
Apr 13, 2016
CVSS 3.8
EPSS 0.00
CVE-2016-3158 LOW
Xen < 4.4.0 - Unauthorized Sensitive Information Exposure via xrstor Function
Apr 13, 2016
CVSS 3.8
EPSS 0.00
CVE-2016-3157 HIGH
Xen - Privilege Escalation via Improper IOPL Context Switch
Apr 12, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-2271 MEDIUM
Xen <= 4.6.x - Denial of Service via Non-Canonical RIP Handling
Feb 19, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-2270 MEDIUM
Debian Linux < 4.6.1 - Improper Input Validation
Feb 19, 2016
CVSS 6.8
EPSS 0.00
CVE-2016-1571 MEDIUM
Xen 3.3.x-4.6.x - DoS
Jan 22, 2016
CVSS 6.3
EPSS 0.00
CVE-2016-1570 HIGH
Xen 3.4.0-4.6.x - Info Disclosure, Privilege Escalation, DoS
Jan 22, 2016
CVSS 8.5
EPSS 0.00
CVE-2015-6815 LOW
QEMU < 2.4.0.1 - Denial of Service via Transmit Descriptor Processing
Jan 31, 2020
CVSS 3.5
EPSS 0.02
CVE-2015-7504 HIGH
QEMU < 2.4.1 - Heap-Based Buffer Overflow in pcnet_receive
Oct 16, 2017
CVSS 8.8
EPSS 0.01
CVE-2015-8554 HIGH
Xen < 4.6.1 - Buffer Overflow in hw/pt-msi.c via MSI-X Table Entries
Apr 14, 2016
CVSS 7.5
EPSS 0.00
CVE-2015-8550 HIGH
Xen - Denial of Service and Privilege Escalation via Double Fetch in PV Backend Memory
Apr 14, 2016
CVSS 8.2
EPSS 0.16
CVE-2015-8555 HIGH
Citrix XenServer - Information Disclosure via Uninitialized FPU Stack and XMM Registers
Apr 13, 2016
CVSS 8.6
EPSS 0.01
CVE-2015-8553 MEDIUM
Xen - Unauthorized Sensitive Information Exposure via Uninitialized Memory
Apr 13, 2016
CVSS 6.5
EPSS 0.00
CVE-2015-8552 MEDIUM
Xen - Denial of Service via PCI Backend Driver Missing Sanity Checks
Apr 13, 2016
CVSS 4.4
EPSS 0.00
Products
xen 490 Xen 6 xapi 3 qemu 1 xen-unstable 1 xen_flask_module 1
Quick Filters
Critical CVEs With Exploits In CISA KEV