4.7

CVE-2012-5510

EPSS 0.09%
Veröffentlicht 13.12.2012 11:53:48
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service (hypervisor crash) via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 22

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Xen ≫ Xen Version4.0.0

Xen ≫ Xen Version4.0.1

Xen ≫ Xen Version4.0.2

Xen ≫ Xen Version4.0.3

Xen ≫ Xen Version4.0.4

Xen ≫ Xen Version4.1.0

Xen ≫ Xen Version4.1.1

Xen ≫ Xen Version4.1.2

Xen ≫ Xen Version4.1.3

Xen ≫ Xen Version4.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.234

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.7	3.4	6.9	AV:L/AC:M/Au:N/C:N/I:N/A:C

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

http://secunia.com/advisories/55082

http://security.gentoo.org/glsa/glsa-201309-24.xml

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00001.html

http://secunia.com/advisories/51468

Vendor Advisory

http://www.debian.org/security/2012/dsa-2582

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00011.html

http://lists.opensuse.org/opensuse-updates/2013-04/msg00051.html

http://lists.opensuse.org/opensuse-updates/2013-04/msg00052.html

http://secunia.com/advisories/51397

Vendor Advisory

http://secunia.com/advisories/51486

Vendor Advisory

http://secunia.com/advisories/51487

Vendor Advisory

http://support.citrix.com/article/CTX135777

http://www.openwall.com/lists/oss-security/2012/12/03/6

http://www.osvdb.org/88128

http://www.securityfocus.com/bid/56794

https://exchange.xforce.ibmcloud.com/vulnerabilities/80478

https://nvd.nist.gov/vuln/detail/CVE-2012-5510

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-5510

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-5510

EUVD