CVE-2016-7093 in Xeninfo

Summary

Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

08/25/2016

Disclosure

09/21/2016

Moderation

VulDB entry created

Entries

VDB-91387 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

8.2

EPSS

0.00060

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-7093
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-7093
CVE Details	https://www.cvedetails.com/cve/CVE-2016-7093/

◂ Previous Overview Next ▸