Vulnerabilities > XEN > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-06-09 CVE-2021-26314 Information Exposure Through Discrepancy vulnerability in multiple products
Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause the use of incorrect data from FPVI and may result in data leakage.
local
low complexity
xen arm broadcom intel fedoraproject CWE-203
5.5
2021-03-05 CVE-2021-28039 Incorrect Calculation of Buffer Size vulnerability in multiple products
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen.
local
low complexity
xen linux netapp CWE-131
6.5
2021-02-17 CVE-2021-26933 An issue was discovered in Xen 4.9 through 4.14.x.
local
low complexity
xen fedoraproject debian
5.5
2021-01-26 CVE-2021-3308 An issue was discovered in Xen 4.12.3 through 4.12.4 and 4.13.1 through 4.14.x.
local
low complexity
xen fedoraproject
5.5
2020-12-15 CVE-2020-29486 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-770
6.0
2020-12-15 CVE-2020-29485 Memory Leak vulnerability in multiple products
An issue was discovered in Xen 4.6 through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-401
5.5
2020-12-15 CVE-2020-29484 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-476
6.0
2020-12-15 CVE-2020-29483 Use After Free vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-416
6.5
2020-12-15 CVE-2020-29482 Untrusted Search Path vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-426
6.0
2020-12-15 CVE-2020-29571 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Xen through 4.14.x.
local
low complexity
xen debian fedoraproject CWE-476
6.2