CVE-2016-7777 in Xeninfo

Summary

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

09/09/2016

Disclosure

10/07/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-362

CVSS

6.3

EPSS

0.00122

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-7777
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-7777
CVE Details	https://www.cvedetails.com/cve/CVE-2016-7777/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!