CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-7188

The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other guests via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.9%

CVSS Severity

CVSS v2 Score 8.3

References

Products affected by CVE-2014-7188

Xen » Xen » Version: 4.1.0

cpe:2.3:o:xen:xen:4.1.0
Xen » Xen » Version: 4.1.1

cpe:2.3:o:xen:xen:4.1.1
Xen » Xen » Version: 4.1.2

cpe:2.3:o:xen:xen:4.1.2
Xen » Xen » Version: 4.1.3

cpe:2.3:o:xen:xen:4.1.3
Xen » Xen » Version: 4.1.4

cpe:2.3:o:xen:xen:4.1.4
Xen » Xen » Version: 4.1.5

cpe:2.3:o:xen:xen:4.1.5
Xen » Xen » Version: 4.1.6.1

cpe:2.3:o:xen:xen:4.1.6.1
Xen » Xen » Version: 4.2.0

cpe:2.3:o:xen:xen:4.2.0
Xen » Xen » Version: 4.2.1

cpe:2.3:o:xen:xen:4.2.1
Xen » Xen » Version: 4.2.2

cpe:2.3:o:xen:xen:4.2.2
Xen » Xen » Version: 4.2.3

cpe:2.3:o:xen:xen:4.2.3
Xen » Xen » Version: 4.3.0

cpe:2.3:o:xen:xen:4.3.0
Xen » Xen » Version: 4.3.1

cpe:2.3:o:xen:xen:4.3.1
Xen » Xen » Version: 4.4.0

cpe:2.3:o:xen:xen:4.4.0
Xen » Xen » Version: 4.4.1

cpe:2.3:o:xen:xen:4.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-7188

Products

Pricing

Contact Us