Citrix

Xenserver

50 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6

CVE-2024-5661

  • EPSS 0.07%
  • Veröffentlicht 13.06.2024 06:15:12
  • Zuletzt bearbeitet 21.11.2024 09:48:06

An issue has been identified in both XenServer 8 and Citrix Hypervisor 8.2 CU1 LTSR which may allow a malicious administrator of a guest VM to cause the host to become slow and/or unresponsive.

7.8

CVE-2012-4606

  • EPSS 0.04%
  • Veröffentlicht 23.01.2020 22:15:09
  • Zuletzt bearbeitet 21.11.2024 01:43:14

Citrix XenServer 4.1, 6.0, 5.6 SP2, 5.6 Feature Pack 1, 5.6 Common Criteria, 5.6, 5.5, 5.0, and 5.0 Update 3 contains a Local Privilege Escalation Vulnerability which could allow local users with access to a guest operating system to gain elevated pr...

6.5

CVE-2014-3798

  • EPSS 4.62%
  • Veröffentlicht 11.07.2019 20:15:10
  • Zuletzt bearbeitet 21.11.2024 02:08:52

The Windows Guest Tools in Citrix XenServer 6.2 SP1 and earlier allows remote attackers to cause a denial of service (guest OS crash) via a crafted Ethernet frame.

5.6

CVE-2018-19965

  • EPSS 0.19%
  • Veröffentlicht 08.12.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:54

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service (host OS crash) because #GP[0] can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of...

7.8

CVE-2018-19962

  • EPSS 0.19%
  • Veröffentlicht 08.12.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:53

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because small IOMMU mappings are unsafely combined into larger ones.

7.8

CVE-2018-19961

  • EPSS 0.19%
  • Veröffentlicht 08.12.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 03:58:53

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes.

10

CVE-2018-14007

  • EPSS 4.53%
  • Veröffentlicht 15.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:48:26

Citrix XenServer 7.1 and newer allows Directory Traversal.

9.9

CVE-2016-9603

  • EPSS 1.52%
  • Veröffentlicht 27.07.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:01:29

A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue could occur when a VNC client attempted to update its display after a VGA operation is performed by a guest. A privileged...

9.9

CVE-2017-2620

  • EPSS 0.77%
  • Veröffentlicht 27.07.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:23:50

Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use t...

9.1

CVE-2017-2615

  • EPSS 0.39%
  • Veröffentlicht 03.07.2018 01:29:00
  • Zuletzt bearbeitet 21.11.2024 03:23:50

Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could occur while copying VGA data via bitblt copy in backward mode. A privileged user inside a guest could use this flaw to...