7.5
CVE-2022-42330
- EPSS 1.36%
- Veröffentlicht 26.01.2023 21:16:47
- Zuletzt bearbeitet 21.11.2024 07:24:45
- Quelle security@xen.org
- CVE-Watchlists
- Unerledigt
Guests can cause Xenstore crash via soft reset When a guest issues a "Soft Reset" (e.g. for performing a kexec) the libxl based Xen toolstack will normally perform a XS_RELEASE Xenstore operation. Due to a bug in xenstored this can result in a crash of xenstored. Any other use of XS_RELEASE will have the same impact.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.36% | 0.682 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
https://security.gentoo.org/glsa/202402-07
https://xenbits.xenproject.org/xsa/advisory-425.txt
http://xenbits.xen.org/xsa/advisory-425.html