Lucene search
Veracode Vulnerability DatabaseVERACODE:32003HistorySep 08, 2021 - 9:58 a.m.
Privilege Escalation
2021-09-0809:58:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.0004 Low
EPSS
Percentile
14.4%
xen is vulnerable to privilege escalation. The vulnerability exists due to majority of such pages remain allocated / associated with a guest for its entire lifetime therefore allowing a user to access the pages if the user knows where these pages were mapped.
References
lists.fedoraproject.org/archives/list/[email protected]/message/2VQCFAPBNGBBAOMJZG6QBREOG5IIDZID/
lists.fedoraproject.org/archives/list/[email protected]/message/FZCNPSRPGFCQRYE2BI4D4Q4SCE56ANV2/
lists.fedoraproject.org/archives/list/[email protected]/message/LPRVHW4J4ZCPPOHZEWP5MOJT7XDGFFPJ/
secdb.alpinelinux.org/v3.13/main.yaml
security.gentoo.org/glsa/202208-23
www.debian.org/security/2021/dsa-4977
xenbits.xenproject.org/xsa/advisory-379.txt
Related
nvd
nvd
CVE-2021-28697
2021-08-27 19:15:07
prion
prion
Design/Logic Flaw
2021-08-27 19:15:00
redhatcve
redhatcve
CVE-2021-28697
2021-08-25 13:05:55
ubuntucve
ubuntucve
CVE-2021-28697
2021-08-27 00:00:00
cvelist
cvelist
CVE-2021-28697
2021-08-27 18:37:41
xen
xen
grant table v2 status pages may remain accessible after de-allocation
2021-08-25 12:00:00
debiancve
debiancve
CVE-2021-28697
2021-08-27 19:15:07
cve
cve
CVE-2021-28697
2021-08-27 19:15:07
osv
osv
CVE-2021-28697
2021-08-27 19:15:07
xen - security update
2021-09-20 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2021-09-07 10:10:42
nessus
nessus
OracleVM 3.4 : xen (OVMSA-2021-0033)
2021-10-12 00:00:00
Debian DSA-4977-1 : xen - security update
2021-09-21 00:00:00
SUSE SLES15 Security Update : xen (SUSE-SU-2021:2943-1)
2021-09-04 00:00:00
openvas
openvas
Fedora: Security Advisory for xen (FEDORA-2021-4f129cc0c1)
2021-09-09 00:00:00
Fedora: Security Advisory for xen (FEDORA-2021-081f9bf5d2)
2021-10-02 00:00:00
Fedora: Security Advisory for xen (FEDORA-2021-d68ed12e46)
2021-09-09 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: xen-4.14.2-3.fc34
2021-09-05 21:14:47
[SECURITY] Fedora 35 Update: xen-4.15.0-6.fc35
2021-09-24 20:36:42
[SECURITY] Fedora 33 Update: xen-4.14.2-3.fc33
2021-09-05 21:27:29
debian
debian
[SECURITY] [DSA 4977-1] xen security update
2021-09-20 19:08:44
suse
suse
Security update for xen (important)
2021-09-07 00:00:00
Security update for xen (important)
2021-09-02 00:00:00
gentoo
gentoo
Xen: Multiple Vulnerabilities
2022-08-14 00:00:00