Shodan
Vulnerabilities
Vulnerable Software
Xen:  >> Xen  >> 3.0.4  Security Vulnerabilities
CVE-2018-7541
An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service (hypervisor crash) or gain privileges by triggering a grant-table transition from v2 to v1.
CVSS Score
8.8
EPSS Score
0.001
Published
2018-02-27
CVE-2017-17563
An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service (host OS crash) or gain host OS privileges by leveraging an incorrect mask for reference-count overflow checking in shadow mode.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-12-12
CVE-2017-17564
An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service (host OS crash) or gain host OS privileges by leveraging incorrect error handling for reference counting in shadow mode.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-12-12
CVE-2017-17565
An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) if shadow mode and log-dirty mode are in place, because of an incorrect assertion related to M2P.
CVSS Score
5.6
EPSS Score
0.001
Published
2017-12-12
CVE-2017-17566
An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) or gain host OS privileges in shadow mode by mapping a certain auxiliary page.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-12-12
CVE-2017-17044
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of service (infinite loop and host OS hang) by leveraging the mishandling of Populate on Demand (PoD) errors.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-11-28
CVE-2017-17045
An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to gain privileges on the host OS, obtain sensitive information, or cause a denial of service (BUG and host OS crash) by leveraging the mishandling of Populate on Demand (PoD) Physical-to-Machine (P2M) errors.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-11-28
CVE-2017-17046
An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-11-28
CVE-2017-15592
An issue was discovered in Xen through 4.9.x allowing x86 HVM guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because self-linear shadow mappings are mishandled for translated guests.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-18
CVE-2017-15593
An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to cause a denial of service (memory leak) because reference counts are mishandled.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-10-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved