CVE-2014-3124
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:P/I:P/A:C
AI Score
Confidence
High
EPSS
Percentile
35.5%
The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local guest HVM administrators to cause a denial of service (hypervisor crash) or possibly execute arbitrary code by leveraging a separate qemu-dm vulnerability to trigger invalid page table translations for unspecified memory page types.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xen | xen | 4.1.0 | cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:* |
| xen | xen | 4.1.1 | cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:* |
| xen | xen | 4.1.2 | cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:* |
| xen | xen | 4.1.3 | cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:* |
| xen | xen | 4.1.4 | cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:* |
| xen | xen | 4.1.5 | cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:* |
| xen | xen | 4.1.6.1 | cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:* |
| xen | xen | 4.2.0 | cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:* |
| xen | xen | 4.2.1 | cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:* |
| xen | xen | 4.2.2 | cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:* |
References
lists.fedoraproject.org/pipermail/package-announce/2014-May/133148.html
lists.fedoraproject.org/pipermail/package-announce/2014-May/133191.html
lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.html
security.gentoo.org/glsa/glsa-201407-03.xml
www.debian.org/security/2014/dsa-3006
www.openwall.com/lists/oss-security/2014/04/29/1
www.openwall.com/lists/oss-security/2014/04/30/10
www.securityfocus.com/bid/67113
www.securitytracker.com/id/1030160
xenbits.xen.org/xsa/advisory-92.html
Related
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:P/I:P/A:C
AI Score
Confidence
High
EPSS
Percentile
35.5%