CVE-2020-29040

HIGH

Xen < 4.14.0 - Out-of-Bounds Write

Title source: rule

Description

An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service (stack corruption), cause a data leak, or possibly gain privileges because of an off-by-one error. NOTE: this issue is caused by an incorrect fix for CVE-2020-27671.

References (3)

[Vendor Advisory] http://xenbits.xen.org/xsa/advisory-355.html

[Vendor Advisory] https://xenbits.xen.org/xsa/advisory-355.html

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2021/01/19/4

Scores

CVSS v3 8.8

EPSS 0.0006

EPSS Percentile 19.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-193 CWE-787

Status published

Products (1)

xen/xen < 4.14.0

Published Nov 24, 2020

Tracked Since Feb 18, 2026