| Max CVSS | 7.2 | Min CVSS | 1.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7094 | 1.5 |
Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update.
|
01-07-2017 - 01:30 | 21-09-2016 - 14:25 | |
| CVE-2016-7093 | 7.2 |
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
|
01-07-2017 - 01:30 | 21-09-2016 - 14:25 | |
| CVE-2016-7092 | 6.8 |
The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables.
|
01-07-2017 - 01:30 | 21-09-2016 - 14:25 | |
| CVE-2016-7154 | 7.2 |
Use-after-free vulnerability in the FIFO event channel code in Xen 4.4.x allows local guest OS administrators to cause a denial of service (host crash) and possibly execute arbitrary code or obtain sensitive information via an invalid guest frame num
|
10-04-2017 - 01:59 | 21-09-2016 - 14:25 |