CVE-2014-3969

EPSS 0.18%
Veröffentlicht 05.06.2014 20:55:06
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Xen 4.4.x, when running on an ARM system, does not properly check write permissions on virtual addresses, which allows local guest administrators to gain privileges via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Xen ≫ Xen Version4.4.0

Xen ≫ Xen Version4.4.0 Updaterc1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.401

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.4	4.4	10	AV:A/AC:M/Au:S/C:C/I:C/A:C

http://secunia.com/advisories/58975

Permissions Required

http://www.openwall.com/lists/oss-security/2014/06/04/14

Third Party Advisory

Mailing List

http://www.securityfocus.com/bid/67819

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1030333

Third Party Advisory

VDB Entry

http://xenbits.xen.org/xsa/advisory-98.html

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2014-3969

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-3969

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-3969

EUVD