Vulnerability Details CVE-2010-0435
The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.0%
CVSS Severity
CVSS v2 Score 4.6
References
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html
- http://secunia.com/advisories/42778
- http://www.vupen.com/english/advisories/2011/0012
- https://bugzilla.redhat.com/show_bug.cgi?id=570528
- https://rhn.redhat.com/errata/RHSA-2010-0622.html
- https://rhn.redhat.com/errata/RHSA-2010-0627.html
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html
- http://secunia.com/advisories/42778
- http://www.vupen.com/english/advisories/2011/0012
- https://bugzilla.redhat.com/show_bug.cgi?id=570528
- https://rhn.redhat.com/errata/RHSA-2010-0622.html
- https://rhn.redhat.com/errata/RHSA-2010-0627.html
Products affected by CVE-2010-0435
-
cpe:2.3:a:redhat:enterprise_virtualization:2.2
-
cpe:2.3:a:redhat:kvm:83