xen
511 tracked vulnerabilities.
CVE-2020-27673
MEDIUM
Xen < 4.14.0 - Denial of Service via High Event Rate to dom0
Oct 22, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-27672
HIGH
Xen 3.2.0-4.14.x - Use-After-Free via Superpage Race Condition
Oct 22, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-27671
HIGH
Xen 4.2.0-4.14.x - Denial of Service and Privilege Escalation via IOMMU TLB Flush Mishandling
Oct 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-27670
HIGH
Xen <4.14.x - DoS/Privilege Escalation
Oct 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-25604
MEDIUM
Xen < 4.14.0 - Denial of Service via Timer Migration Race Condition
Sep 23, 2020
CVSS 4.7
EPSS 0.00
CVE-2020-25603
HIGH
Xen < 4.14.0 - Denial of Service via Missing Memory Barriers in Event Channel Access
Sep 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-25602
MEDIUM
Xen 4.11.0-4.13.x - Denial of Service via MSR_MISC_ENABLE MSR Access
Sep 23, 2020
CVSS 6.0
EPSS 0.00
CVE-2020-25601
MEDIUM
Xen < 4.14.0 - Denial of Service via Event Channel Reset
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25600
MEDIUM
Xen 4.4.0-4.13.x - Out-of-bounds Write via Event Channel Allocation
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25599
HIGH
Xen 4.5-4.14.x - Denial of Service and Privilege Escalation via evtchn_reset Race Condition
Sep 23, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-25598
MEDIUM
Xen 4.12.0-4.13.9 - Denial of Service via RCU Reference Leak in XENMEM_acquire_resource
Sep 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25597
MEDIUM
Xen 4.4.0-4.13.x - Denial of Service via Event Channel Reset
Sep 23, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-25596
MEDIUM
Xen 3.2.0-4.14.x - Denial of Service via SYSENTER Instruction Handling
Sep 23, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-25595
HIGH
Xen < 4.14.0 - Denial of Service via PCI Passthrough Register Handling
Sep 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15852
HIGH
Linux Kernel 5.5-5.7.9 - Incorrect Default Permissions via TSS I/O Bitmap Mishandling
Jul 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15567
HIGH
Xen < 4.13.1 - Race Condition via Non-Atomic EPT PTE Modification
Jul 07, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15566
MEDIUM
Xen 4.10.0-4.13.0 - Denial of Service via Event-Channel Port Allocation Error Handling
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15565
HIGH
Xen 3.2.0-4.13.0 - Denial of Service via Insufficient Cache Write-Back
Jul 07, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-15564
MEDIUM
Xen < 4.13.1 - Denial of Service via Misaligned VCPUOP_register_vcpu_info Hypercall
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15563
MEDIUM
Xen 4.8.0-4.13.0 - Denial of Service via Dirty Video RAM Tracking
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-11743
MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_map_grant Error Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-11742
MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_copy Continuation Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11741
HIGH
Xen < 4.13.0 - Denial of Service via Xenoprof Shared Ring Buffer Manipulation
Apr 14, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-11740
MEDIUM
Xen 3.2.0-4.13.0 - Unauthenticated Sensitive Information Exposure via Unscrubbed Xenoprof Buffers
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11739
HIGH
Xen < 4.13.0 - Denial of Service via Missing Memory Barriers in Read-Write Unlock Paths
Apr 14, 2020
CVSS 7.8
EPSS 0.00