4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
26.7%
The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x
does not properly release locks, which might allow guest OS administrators
to cause a denial of service (deadlock or host crash) via unspecified
vectors, related to XENMEM_exchange error handling.