2.1

CVE-2015-2045

The HYPERVISOR_xen_version hypercall in Xen 3.2.x through 4.5.x does not properly initialize data structures, which allows local guest users to obtain sensitive information via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
XenXen Version3.2.0
XenXen Version3.2.1
XenXen Version3.2.2
XenXen Version3.2.3
XenXen Version3.3.0
XenXen Version3.3.1
XenXen Version3.3.2
XenXen Version3.4.0
XenXen Version3.4.1
XenXen Version3.4.2
XenXen Version3.4.3
XenXen Version3.4.4
XenXen Version4.0.0
XenXen Version4.0.1
XenXen Version4.0.2
XenXen Version4.0.3
XenXen Version4.0.4
XenXen Version4.1.0
XenXen Version4.1.1
XenXen Version4.1.2
XenXen Version4.1.3
XenXen Version4.1.4
XenXen Version4.1.5
XenXen Version4.1.6.1
XenXen Version4.2.0
XenXen Version4.2.1
XenXen Version4.2.2
XenXen Version4.2.3
XenXen Version4.3.0
XenXen Version4.3.1
XenXen Version4.4.0
XenXen Version4.4.0 Updaterc1
XenXen Version4.4.1 Update-
XenXen Version4.5.0
FedoraprojectFedora Version20
FedoraprojectFedora Version21
FedoraprojectFedora Version22
DebianDebian Linux Version7.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.47% 0.369
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

https://security.gentoo.org/glsa/201504-04
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152776.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152483.html
Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152588.html
Third Party Advisory
http://support.citrix.com/article/CTX200484
http://www.debian.org/security/2015/dsa-3181
Third Party Advisory
http://www.securitytracker.com/id/1031806
Third Party Advisory
VDB Entry
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-423503.htm
http://www.securityfocus.com/bid/72955
http://www.securitytracker.com/id/1031837
Third Party Advisory
VDB Entry
http://xenbits.xen.org/xsa/advisory-122.html
Patch
Vendor Advisory