Vulnerabilities > XEN > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-07-02 CVE-2018-12891 An issue was discovered in Xen through 4.10.x.
local
low complexity
debian xen
6.5
2018-05-10 CVE-2018-10981 Infinite Loop vulnerability in multiple products
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial of service (host OS infinite loop) in situations where a QEMU device model attempts to make invalid transitions between states of a request.
local
low complexity
debian xen CWE-835
6.5
2018-04-27 CVE-2018-10472 Information Exposure vulnerability in multiple products
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users (in certain configurations) to read arbitrary dom0 files via QMP live insertion of a CDROM, in conjunction with specifying the target file as the backing file of a snapshot.
local
high complexity
xen debian CWE-200
5.6
2018-04-27 CVE-2018-10471 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (out-of-bounds zero write and hypervisor crash) via unexpected INT 80 processing, because of an incorrect fix for CVE-2017-5754.
local
low complexity
xen debian CWE-787
6.5
2018-02-27 CVE-2018-7542 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Xen 4.8.x through 4.10.x allowing x86 PVH guest OS users to cause a denial of service (NULL pointer dereference and hypervisor crash) by leveraging the mishandling of configurations that lack a Local APIC.
local
low complexity
xen debian CWE-476
6.5
2018-02-27 CVE-2018-7540 Resource Exhaustion vulnerability in multiple products
An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (host OS CPU hang) via non-preemptable L3/L4 pagetable freeing.
local
low complexity
xen debian CWE-400
6.5
2018-01-05 CVE-2018-5244 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in XEN
In Xen 4.10, new infrastructure was introduced as part of an overhaul to how MSR emulation happens for guests.
local
low complexity
xen CWE-119
6.5
2017-12-12 CVE-2017-17565 Improper Input Validation vulnerability in XEN
An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) if shadow mode and log-dirty mode are in place, because of an incorrect assertion related to M2P.
local
high complexity
xen CWE-20
5.6
2017-11-28 CVE-2017-17046 Information Exposure vulnerability in XEN
An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled.
local
low complexity
xen CWE-200
6.5
2017-11-28 CVE-2017-17044 Infinite Loop vulnerability in XEN
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of service (infinite loop and host OS hang) by leveraging the mishandling of Populate on Demand (PoD) errors.
local
low complexity
xen CWE-835
6.5