4.7

CVE-2012-5510

EPSS 0.09%
Published 13.12.2012 11:53:48
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

Xen 4.x, when downgrading the grant table version, does not properly remove the status page from the tracking list when freeing the page, which allows local guest OS administrators to cause a denial of service (hypervisor crash) via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 22

Data is provided by the National Vulnerability Database (NVD)

Xen ≫ Xen Version4.0.0

Xen ≫ Xen Version4.0.1

Xen ≫ Xen Version4.0.2

Xen ≫ Xen Version4.0.3

Xen ≫ Xen Version4.0.4

Xen ≫ Xen Version4.1.0

Xen ≫ Xen Version4.1.1

Xen ≫ Xen Version4.1.2

Xen ≫ Xen Version4.1.3

Xen ≫ Xen Version4.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.234

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.7	3.4	6.9	AV:L/AC:M/Au:N/C:N/I:N/A:C

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

http://secunia.com/advisories/55082

http://security.gentoo.org/glsa/glsa-201309-24.xml

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00001.html

http://secunia.com/advisories/51468

Vendor Advisory

http://www.debian.org/security/2012/dsa-2582

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00018.html

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00019.html

http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00011.html

http://lists.opensuse.org/opensuse-updates/2013-04/msg00051.html

http://lists.opensuse.org/opensuse-updates/2013-04/msg00052.html

http://secunia.com/advisories/51397

Vendor Advisory

http://secunia.com/advisories/51486

Vendor Advisory

http://secunia.com/advisories/51487

Vendor Advisory

http://support.citrix.com/article/CTX135777

http://www.openwall.com/lists/oss-security/2012/12/03/6

http://www.osvdb.org/88128

http://www.securityfocus.com/bid/56794

https://exchange.xforce.ibmcloud.com/vulnerabilities/80478

https://nvd.nist.gov/vuln/detail/CVE-2012-5510

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-5510

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-5510

EUVD