CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-6654

The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and earlier does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page, which allows remote domains to cause a denial of service by leveraging permissions to map the memory of a foreign guest.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.4%

CVSS Severity

CVSS v2 Score 2.1

References

http://www.debian.org/security/2015/dsa-3414
http://www.securitytracker.com/id/1033438
http://xenbits.xen.org/xsa/advisory-141.html
http://www.debian.org/security/2015/dsa-3414
http://www.securitytracker.com/id/1033438
http://xenbits.xen.org/xsa/advisory-141.html

Products affected by CVE-2015-6654

Xen » Xen » Version: 4.4.0

cpe:2.3:o:xen:xen:4.4.0
Xen » Xen » Version: 4.5.0

cpe:2.3:o:xen:xen:4.5.0
Xen » Xen » Version: 4.5.1

cpe:2.3:o:xen:xen:4.5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-6654

Products

Pricing

Contact Us