CVE-2018-19961

HIGH

Xen <4.11.x - Privilege Escalation

Title source: llm

Description

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes.

References (7)

[Third Party Advisory] https://support.citrix.com/article/CTX239432

[Third Party Advisory] https://www.debian.org/security/2019/dsa-4369

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106182

[Patch, Vendor Advisory] https://xenbits.xen.org/xsa/advisory-275.html

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UXC6BME7SXJI2ZIATNXCAH7RGPI4UKTT/

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html

[Mailing List] https://lists.debian.org/debian-lts-announce/2019/10/msg00008.html

Scores

CVSS v3 7.8

EPSS 0.0018

EPSS Percentile 39.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-459

Status published

Products (6)

citrix/xenserver 7.0

citrix/xenserver 7.1 cu1

citrix/xenserver 7.5

citrix/xenserver 7.6

debian/debian_linux 9.0

xen/xen < 4.11.1

Published Dec 08, 2018

Tracked Since Feb 18, 2026