CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4329

The xenlight library (libxl) in Xen 4.0.x through 4.2.x, when IOMMU is disabled, provides access to a busmastering-capable PCI passthrough device before the IOMMU setup is complete, which allows local HVM guest domains to gain privileges or cause a denial of service via a DMA instruction.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.8%

CVSS Severity

CVSS v2 Score 6.5

References

Products affected by CVE-2013-4329

Xen » Xen » Version: 4.0.0

cpe:2.3:o:xen:xen:4.0.0
Xen » Xen » Version: 4.0.1

cpe:2.3:o:xen:xen:4.0.1
Xen » Xen » Version: 4.0.2

cpe:2.3:o:xen:xen:4.0.2
Xen » Xen » Version: 4.0.3

cpe:2.3:o:xen:xen:4.0.3
Xen » Xen » Version: 4.0.4

cpe:2.3:o:xen:xen:4.0.4
Xen » Xen » Version: 4.1.0

cpe:2.3:o:xen:xen:4.1.0
Xen » Xen » Version: 4.1.1

cpe:2.3:o:xen:xen:4.1.1
Xen » Xen » Version: 4.1.2

cpe:2.3:o:xen:xen:4.1.2
Xen » Xen » Version: 4.1.3

cpe:2.3:o:xen:xen:4.1.3
Xen » Xen » Version: 4.1.4

cpe:2.3:o:xen:xen:4.1.4
Xen » Xen » Version: 4.1.5

cpe:2.3:o:xen:xen:4.1.5
Xen » Xen » Version: 4.2.0

cpe:2.3:o:xen:xen:4.2.0
Xen » Xen » Version: 4.2.1

cpe:2.3:o:xen:xen:4.2.1
Xen » Xen » Version: 4.2.2

cpe:2.3:o:xen:xen:4.2.2
Xen » Xen » Version: 4.2.3

cpe:2.3:o:xen:xen:4.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4329

Products

Pricing

Contact Us