CVE-2014-3969
Xen 4.4.x - Privilege Escalation via Improper Write Permission Check
Title source: llmDescription
Xen 4.4.x, when running on an ARM system, does not properly check write permissions on virtual addresses, which allows local guest administrators to gain privileges via unspecified vectors.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030333
Patch, Vendor Advisory x_refsource_confirm
http://xenbits.xen.org/xsa/advisory-98.html
Permissions Required third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58975
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/67819
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2014/06/04/14
Scores
EPSS
0.0018
EPSS Percentile
39.4%
Details
CWE
CWE-264
Status
published
Products (1)
xen/xen
4.4.0 (2 CPE variants)
Published
Jun 05, 2014
Tracked Since
Feb 18, 2026