Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2014-4021
HistoryJun 18, 2014 - 7:55 p.m.

CVE-2014-4021

2014-06-1819:55:04
CWE-119
mitre
web.nvd.nist.gov
37
xen
memory
security
vulnerability
cve-2014-4021
nvd

CVSS2

2.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:S/C:P/I:N/A:N

AI Score

5.4

Confidence

Low

EPSS

0.001

Percentile

28.0%

JSON

Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.

Affected configurations

Nvd
Node
xenxenMatch3.2.0
OR
xenxenMatch3.2.1
OR
xenxenMatch3.2.2
OR
xenxenMatch3.2.3
OR
xenxenMatch4.0.0
OR
xenxenMatch4.0.1
OR
xenxenMatch4.0.2
OR
xenxenMatch4.0.3
OR
xenxenMatch4.0.4
OR
xenxenMatch4.1.0
OR
xenxenMatch4.1.1
OR
xenxenMatch4.1.2
OR
xenxenMatch4.1.3
OR
xenxenMatch4.1.4
OR
xenxenMatch4.1.5
OR
xenxenMatch4.1.6.1
OR
xenxenMatch4.2.0
OR
xenxenMatch4.2.1
OR
xenxenMatch4.2.2
OR
xenxenMatch4.2.3
OR
xenxenMatch4.3.0
OR
xenxenMatch4.3.1
OR
xenxenMatch4.4.0
OR
xenxenMatch4.4.0rc1
VendorProductVersionCPE
xenxen3.2.0cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*
xenxen3.2.1cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*
xenxen3.2.2cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*
xenxen3.2.3cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*
xenxen4.0.0cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*
xenxen4.0.1cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*
xenxen4.0.2cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*
xenxen4.0.3cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*
xenxen4.0.4cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*
xenxen4.1.0cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 241

Related

nessus 17
xen 1
ubuntucve 1
cvelist 1
nvd 1
prion 1
debiancve 1
securityvulns 2
openvas 30
oraclelinux 2
centos 1
redhat 1
suse 2
osv 1
debian 1
fedora 16
gentoo 1
nessus
nessus
Fedora 19 : xen-4.2.4-6.fc19 (2014-7734)
2014-07-05 00:00:00
Fedora 20 : xen-4.3.2-6.fc20 (2014-7722)
2014-07-05 00:00:00
RHEL 5 : kernel (RHSA-2014:0926)
2014-07-24 00:00:00
xen
xen
Hypervisor heap contents leaked to guests
2014-06-17 11:44:00
ubuntucve
ubuntucve
CVE-2014-4021
2014-06-18 00:00:00
cvelist
cvelist
CVE-2014-4021
2014-06-18 19:00:00
nvd
nvd
CVE-2014-4021
2014-06-18 19:55:04
prion
prion
Information disclosure
2014-06-18 19:55:00
debiancve
debiancve
CVE-2014-4021
2014-06-18 19:55:04
securityvulns
securityvulns
[oss-security] Xen Security Advisory 100 (CVE-2014-4021) - Hypervisor heap contents leaked to guests
2014-06-19 00:00:00
Xen multiple security vulnerabilities
2014-06-19 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-0926)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-0926-1)
2015-10-06 00:00:00
CentOS Update for kernel CESA-2014:0926 centos5
2014-07-28 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2014-07-24 00:00:00
kernel security and bug fix update
2014-07-25 00:00:00
centos
centos
kernel security update
2014-07-25 03:04:41
redhat
redhat
(RHSA-2014:0926) Moderate: kernel security and bug fix update
2014-07-23 00:00:00
suse
suse
xen: security and bugfix update (important)
2014-10-09 13:04:44
xen: security and bugfix update (important)
2014-10-09 13:09:07
osv
osv
xen - security update
2014-08-18 00:00:00
debian
debian
[SECURITY] [DSA 3006-1] xen security update
2014-08-18 12:41:33
fedora
fedora
[SECURITY] Fedora 20 Update: xen-4.3.2-6.fc20
2014-07-04 12:30:35
[SECURITY] Fedora 20 Update: xen-4.3.2-7.fc20
2014-08-24 02:54:54
[SECURITY] Fedora 20 Update: xen-4.3.3-3.fc20
2014-10-11 06:54:26
gentoo
gentoo
Xen: Multiple Vunlerabilities
2014-07-16 00:00:00

CVSS2

2.7

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:S/C:P/I:N/A:N

AI Score

5.4

Confidence

Low

EPSS

0.001

Percentile

28.0%

JSON
Related for CVE-2014-4021
nessus17xen1ubuntucve1cvelist1nvd1prion1debiancve1securityvulns2openvas30oraclelinux2centos1redhat1suse2osv1debian1fedora16gentoo1