| Max CVSS | 8.3 | Min CVSS | 2.7 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-4540 | 7.5 |
Buffer overflow in scoop_gpio_handler_update in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a large (1) prev_level, (2) gpio_level, or (3) gpio_dir value in a savevm image.
|
13-02-2023 - 04:47 | 04-11-2014 - 21:55 | |
| CVE-2013-4344 | 7.2 |
Buffer overflow in the SCSI implementation in QEMU, as used in Xen, when a SCSI controller has more than 256 attached devices, allows local users to gain privileges via a small transfer buffer in a REPORT LUNS command.
|
11-08-2020 - 15:21 | 04-10-2013 - 17:55 | |
| CVE-2014-7154 | 6.1 |
Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 through 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors.
|
30-10-2018 - 16:27 | 02-10-2014 - 14:55 | |
| CVE-2014-7155 | 5.8 |
The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and earlier does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges
|
30-10-2018 - 16:27 | 02-10-2014 - 14:55 | |
| CVE-2014-3967 | 5.5 |
The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x does not properly check the return value from the IRQ setup check, which allows local HVM guest administrators to cause a denial of service (NULL pointer dereference and crash) via unspecif
|
30-10-2018 - 16:27 | 05-06-2014 - 20:55 | |
| CVE-2014-3968 | 5.5 |
The HVMOP_inject_msi function in Xen 4.2.x, 4.3.x, and 4.4.x allows local guest HVM administrators to cause a denial of service (host crash) via a large number of crafted requests, which trigger an error messages to be logged.
|
30-10-2018 - 16:27 | 05-06-2014 - 20:55 | |
| CVE-2014-7188 | 8.3 |
The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other gues
|
30-10-2018 - 16:26 | 02-10-2014 - 14:55 | |
| CVE-2014-7156 | 3.3 |
The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 3.3.x through 4.4.x does not check the supervisor mode permissions for instructions that generate software interrupts, which allows local HVM guest users to cause a denial of servi
|
30-10-2018 - 16:26 | 02-10-2014 - 14:55 | |
| CVE-2014-3124 | 6.7 |
The HVMOP_set_mem_type control in Xen 4.1 through 4.4.x allows local guest HVM administrators to cause a denial of service (hypervisor crash) or possibly execute arbitrary code by leveraging a separate qemu-dm vulnerability to trigger invalid page ta
|
30-10-2018 - 16:26 | 07-05-2014 - 10:55 | |
| CVE-2014-4021 | 2.7 |
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
|
30-10-2018 - 16:26 | 18-06-2014 - 19:55 |