6.9

CVE-2013-2196

EPSS 0.04%
Veröffentlicht 23.08.2013 16:55:07
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Multiple unspecified vulnerabilities in the Elf parser (libelf) in Xen 4.2.x and earlier allow local guest administrators with certain permissions to have an unspecified impact via a crafted kernel, related to "other problems" that are not CVE-2013-2194 or CVE-2013-2195.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Xen ≫ Xen Version <= 4.2.2

Xen ≫ Xen Version4.2.0

Xen ≫ Xen Version4.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

http://secunia.com/advisories/55082

http://security.gentoo.org/glsa/glsa-201309-24.xml

http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00015.html

http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html

http://www.debian.org/security/2014/dsa-3006

http://support.citrix.com/article/CTX138058

Patch

Vendor Advisory

http://www.openwall.com/lists/oss-security/2013/06/20/2

http://www.openwall.com/lists/oss-security/2013/06/20/4

https://nvd.nist.gov/vuln/detail/CVE-2013-2196

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-2196

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-2196

EUVD