CVE-2014-1666 in Xenالمعلومات

الملخص

بحسب MITRE

The do_physdev_op function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the (1) PHYSDEVOP_prepare_msix and (2) PHYSDEVOP_release_msix operations, which allows local PV guests to cause a denial of service (host or guest malfunction) or possibly gain privileges via unspecified vectors.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

24/01/2014

إفشاء

26/01/2014

الاعتدال

تمت الموافقة

إدخال

VDB-12078

EPSS

0.00876

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!