xen

511 tracked vulnerabilities.

CVE-2020-27673 MEDIUM
Xen < 4.14.0 - Denial of Service via High Event Rate to dom0
Oct 22, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-27672 HIGH
Xen 3.2.0-4.14.x - Use-After-Free via Superpage Race Condition
Oct 22, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-27671 HIGH
Xen 4.2.0-4.14.x - Denial of Service and Privilege Escalation via IOMMU TLB Flush Mishandling
Oct 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-27670 HIGH
Xen <4.14.x - DoS/Privilege Escalation
Oct 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-25604 MEDIUM
Xen < 4.14.0 - Denial of Service via Timer Migration Race Condition
Sep 23, 2020
CVSS 4.7
EPSS 0.00
CVE-2020-25603 HIGH
Xen < 4.14.0 - Denial of Service via Missing Memory Barriers in Event Channel Access
Sep 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-25602 MEDIUM
Xen 4.11.0-4.13.x - Denial of Service via MSR_MISC_ENABLE MSR Access
Sep 23, 2020
CVSS 6.0
EPSS 0.00
CVE-2020-25601 MEDIUM
Xen < 4.14.0 - Denial of Service via Event Channel Reset
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25600 MEDIUM
Xen 4.4.0-4.13.x - Out-of-bounds Write via Event Channel Allocation
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25599 HIGH
Xen 4.5-4.14.x - Denial of Service and Privilege Escalation via evtchn_reset Race Condition
Sep 23, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-25598 MEDIUM
Xen 4.12.0-4.13.9 - Denial of Service via RCU Reference Leak in XENMEM_acquire_resource
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25597 MEDIUM
Xen 4.4.0-4.13.x - Denial of Service via Event Channel Reset
Sep 23, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-25596 MEDIUM
Xen 3.2.0-4.14.x - Denial of Service via SYSENTER Instruction Handling
Sep 23, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-25595 HIGH
Xen < 4.14.0 - Denial of Service via PCI Passthrough Register Handling
Sep 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15852 HIGH
Linux Kernel 5.5-5.7.9 - Incorrect Default Permissions via TSS I/O Bitmap Mishandling
Jul 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15567 HIGH
Xen < 4.13.1 - Race Condition via Non-Atomic EPT PTE Modification
Jul 07, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15566 MEDIUM
Xen 4.10.0-4.13.0 - Denial of Service via Event-Channel Port Allocation Error Handling
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15565 HIGH
Xen 3.2.0-4.13.0 - Denial of Service via Insufficient Cache Write-Back
Jul 07, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-15564 MEDIUM
Xen < 4.13.1 - Denial of Service via Misaligned VCPUOP_register_vcpu_info Hypercall
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15563 MEDIUM
Xen 4.8.0-4.13.0 - Denial of Service via Dirty Video RAM Tracking
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-11743 MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_map_grant Error Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-11742 MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_copy Continuation Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11741 HIGH
Xen < 4.13.0 - Denial of Service via Xenoprof Shared Ring Buffer Manipulation
Apr 14, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-11740 MEDIUM
Xen 3.2.0-4.13.0 - Unauthenticated Sensitive Information Exposure via Unscrubbed Xenoprof Buffers
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11739 HIGH
Xen < 4.13.0 - Denial of Service via Missing Memory Barriers in Read-Write Unlock Paths
Apr 14, 2020
CVSS 7.8
EPSS 0.00