xen

496 tracked vulnerabilities.

CVE-2020-15567 HIGH
Xen < 4.13.1 - Race Condition via Non-Atomic EPT PTE Modification
Jul 07, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15566 MEDIUM
Xen 4.10.0-4.13.0 - Denial of Service via Event-Channel Port Allocation Error Handling
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15565 HIGH
Xen 3.2.0-4.13.0 - Denial of Service via Insufficient Cache Write-Back
Jul 07, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-15564 MEDIUM
Xen < 4.13.1 - Denial of Service via Misaligned VCPUOP_register_vcpu_info Hypercall
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-15563 MEDIUM
Xen 4.8.0-4.13.0 - Denial of Service via Dirty Video RAM Tracking
Jul 07, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-11743 MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_map_grant Error Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11742 MEDIUM
Xen < 4.13.0 - Denial of Service via GNTTABOP_copy Continuation Handling
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11741 HIGH
Xen < 4.13.0 - Denial of Service via Xenoprof Shared Ring Buffer Manipulation
Apr 14, 2020
CVSS 8.8
EPSS 0.00
CVE-2020-11740 MEDIUM
Xen 3.2.0-4.13.0 - Unauthenticated Sensitive Information Exposure via Unscrubbed Xenoprof Buffers
Apr 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-11739 HIGH
Xen < 4.13.0 - Denial of Service via Missing Memory Barriers in Read-Write Unlock Paths
Apr 14, 2020
CVSS 7.8
EPSS 0.00
CVE-2019-19583 HIGH
Xen < 4.12.1 - Denial of Service via VMX VMEntry Check Mishandling
Dec 11, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-19582 MEDIUM
Xen 4.8.0-4.12.0 - Denial of Service via Bitmap Bit Iteration
Dec 11, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-19581 MEDIUM
Xen 4.8.0-4.12.0 - Denial of Service via 32-bit Arm Bitmap Iteration
Dec 11, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-19580 MEDIUM
Xen < 4.12.1 - Privilege Escalation via Pagetable Promotion/Demotion Race Condition
Dec 11, 2019
CVSS 6.6
EPSS 0.01
CVE-2019-19578 HIGH
Xen < 4.12.1 - Denial of Service via Linear Pagetable Chain Calculation
Dec 11, 2019
CVSS 8.8
EPSS 0.00
CVE-2019-19577 HIGH
Xen < 4.12.1 - Denial of Service via Pagetable Height Update Race Condition
Dec 11, 2019
CVSS 7.2
EPSS 0.00
CVE-2019-19579 MEDIUM
Xen < 4.12.1 - Privilege Escalation via DMA in PCI Passthrough
Dec 04, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-18425 CRITICAL
Xen < 4.12.1 - 32-bit PV Guest Privilege Escalation via Descriptor Table Limit Bypass
Oct 31, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-18424 MEDIUM
Xen < 4.12.1 - Privilege Escalation via DMA in PCI Passthrough
Oct 31, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-18423 HIGH
Xen 4.8-4.12.x - Denial of Service via XENMEM_add_to_physmap Hypercall
Oct 31, 2019
CVSS 8.8
EPSS 0.05
CVE-2019-18422 HIGH
Xen <4.12.x - DoS/Privilege Escalation
Oct 31, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-18421 HIGH
Xen < 4.12.1 - Privilege Escalation via Pagetable Promotion/Demotion Race Condition
Oct 31, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-18420 MEDIUM
Xen < 4.12.1 - Denial of Service via VCPUOP_initialise Hypercall Format String
Oct 31, 2019
CVSS 6.5
EPSS 0.04
CVE-2019-17349 MEDIUM
Xen < 4.12.1 - Denial of Service via LoadExcl or StoreExcl Operation
Oct 08, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-17348 MEDIUM
Xen < 4.11.2 - Denial of Service via PCID and Shadow-Pagetable Incompatibility
Oct 08, 2019
CVSS 6.5
EPSS 0.00
Products
xen 490 Xen 6 xapi 3 qemu 1 xen-unstable 1 xen_flask_module 1
Quick Filters
Critical CVEs With Exploits In CISA KEV