CVE-2015-5165
Xen < 4.5.0 - Use of Uninitialized Resource
Title source: ruleDescription
The C+ mode offload emulation in the RTL8139 network card device model in QEMU, as used in Xen 4.5.x and earlier, allows remote attackers to read process heap memory via unspecified vectors.
Exploits (1)
github
WORKING POC
8 stars
by codecat007 · cpoc
https://github.com/codecat007/cvehub/tree/main/android/kernel/vm-escape-qemu-case-study/vm_escape/cve-2015-5165.c
References (19)
Scores
EPSS
0.1316
EPSS Percentile
94.2%
Details
CWE
CWE-908
Status
published
Products (50)
arista/eos
4.12
arista/eos
4.13
arista/eos
4.14
arista/eos
4.15
debian/debian_linux
7.0
debian/debian_linux
8.0
fedoraproject/fedora
21
fedoraproject/fedora
22
oracle/linux
7 0
redhat/enterprise_linux_compute_node_eus
7.1
... and 40 more
Published
Aug 12, 2015
Tracked Since
Feb 18, 2026