Lucene search

[email protected]CVE-2013-2196

HistoryAug 23, 2013 - 4:55 p.m.

CVE-2013-2196

2013-08-2316:55:07

[email protected]

web.nvd.nist.gov

cve-2013-2196

elf parser

libelf

xen

local guest administrators

kernel

unspecified impact

nvd

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

Multiple unspecified vulnerabilities in the Elf parser (libelf) in Xen 4.2.x and earlier allow local guest administrators with certain permissions to have an unspecified impact via a crafted kernel, related to “other problems” that are not CVE-2013-2194 or CVE-2013-2195.

Affected configurations

NVD

Node

xenxenRange≤4.2.2

xenxenMatch4.2.0

xenxenMatch4.2.1

CPENameOperatorVersion
xen:xenxenle4.2.2
xen:xenxeneq4.2.0
xen:xenxeneq4.2.1

CPE	Name	Operator	Version
xen:xen	xen	le	4.2.2
xen:xen	xen	eq	4.2.0
xen:xen	xen	eq	4.2.1

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00015.html

lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html

secunia.com/advisories/55082

security.gentoo.org/glsa/glsa-201309-24.xml

support.citrix.com/article/CTX138058

www.debian.org/security/2014/dsa-3006

www.openwall.com/lists/oss-security/2013/06/20/2

www.openwall.com/lists/oss-security/2013/06/20/4

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

Related for CVE-2013-2196

prion3 fedora39 nessus13 xen1 cvelist3 ubuntucve3 nvd3 debiancve3 openvas74 suse4 mageia1 cve2 osv1 debian1 gentoo1