xen
511 tracked vulnerabilities.
CVE-2022-23033
HIGH
Xen >=4.12.0 - Improper Resource Shutdown or Release in p2m Mapping Removal
Jan 25, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-28713
MEDIUM
Xen - Denial of Service via High Frequency Events
Jan 05, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-28712
MEDIUM
Xen - Denial of Service via High Frequency Events from Rogue Backends
Jan 05, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-28711
MEDIUM
Xen - Denial of Service via High Frequency Events from Rogue Backends
Jan 05, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-28703
HIGH
Xen < 14.4 - Unauthenticated Memory Access via Grant Table v2 Status Page De-allocation Race
Dec 07, 2021
CVSS 7.0
EPSS 0.00
CVE-2021-28709
HIGH
Xen 3.4.0-4.12.3 - Denial of Service via Partial P2M Update Handling
Nov 24, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28705
HIGH
Xen 3.4.0-4.12.3 - Denial of Service via Partially Successful P2M Updates
Nov 24, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28708
HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28707
HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28706
HIGH
Xen 3.2-4.12 - Memory Limit Bypass via 32-bit Overflow
Nov 24, 2021
CVSS 8.6
EPSS 0.02
CVE-2021-28704
HIGH
Xen 4.7.0-4.15.0 - Denial of Service via PoD Operations on Misaligned GFNs
Nov 24, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28710
HIGH
Xen - Improper Privilege Management in VT-d IOMMU Shared Page Table Mode
Nov 21, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28702
HIGH
Xen 4.13.0-4.15.1 - Improper Privilege Management in PCI Device Deassignment
Oct 06, 2021
CVSS 7.6
EPSS 0.00
CVE-2021-28701
HIGH
Xen >=4.0.0 - Race Condition in XENMAPSPACE_grant_table Handling
Sep 08, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28700
MEDIUM
Xen >=4.12.0 - Unrestricted Memory Allocation in dom0less DomUs
Aug 27, 2021
CVSS 4.9
EPSS 0.02
CVE-2021-28699
MEDIUM
inadequate grant-v2 status frames array bounds check - Info Disclosure
Aug 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28698
MEDIUM
Xen >= 3.2.0 - Denial of Service via Grant Table Handling Infinite Loop
Aug 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28697
HIGH
Xen 4.0.0-4.14.x - Race Condition in Grant Table v2 Status Page De-allocation
Aug 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28696
MEDIUM
Xen - Incorrect Authorization in IOMMU Page Mapping
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-28695
MEDIUM
IOMMU page mapping issues on x86 - Info Disclosure
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-28694
MEDIUM
IOMMU page mapping issues on x86 - Info Disclosure
Aug 27, 2021
CVSS 6.8
EPSS 0.00
CVE-2021-28693
MEDIUM
Xen 4.12.0-4.14.99 - Unprotected User Data Exposure via Boot Module Scrubbing Failure
Jun 30, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28692
HIGH
Xen >=3.2.0 - Improper Privilege Management in IOMMU Timeout Handling
Jun 30, 2021
CVSS 7.1
EPSS 0.00
CVE-2021-28690
MEDIUM
Xen 4.12-4.14 - TSX Async Abort Protections Not Restored After S3
Jun 29, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-28689
MEDIUM
Xen < 4.12.0 - Information Disclosure via Speculative Execution in 32-bit PV Guests
Jun 11, 2021
CVSS 5.5
EPSS 0.00