CVSS: 5.5EPSS: 0%CPEs: 11EXPL: 0CVE-2016-10025
https://notcve.org/view.php?id=CVE-2016-10025
VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to cause a denial of service (hypervisor crash) by leveraging a missing NULL pointer check. Emulación VMFUNC en Xen 4.6.x hasta la versión 4.8.x en sistemas x86 que usan extensiones de virtualización AMD (también conocidas como SVM) permite a usuarios locales HVM invitados del SO provocar una denegación de servicio (bloqueo del hipervisor) aprovechando una verificación perdida del puntero NULL. • http://www.securityfocus.com/bid/95026 http://www.securitytracker.com/id/1037518 http://xenbits.xen.org/xsa/advisory-203.html https://support.citrix.com/article/CTX219378 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2016-9680
https://notcve.org/view.php?id=CVE-2016-9680
Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from kernel memory via unspecified vectors. Citrix Provisioning Services en versiones anteriores a 7.12 permite a atacantes obtener información sensible de la memoria del kernel a través de vectores no especificados. • http://www.securityfocus.com/bid/95620 http://www.securitytracker.com/id/1037625 https://support.citrix.com/article/CTX219580 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2016-9676
https://notcve.org/view.php?id=CVE-2016-9676
Buffer overflow in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Citrix Provisioning Services en versiones anteriores a 7.12 permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • http://www.securityfocus.com/bid/95620 http://www.securitytracker.com/id/1037625 https://support.citrix.com/article/CTX219580 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2016-9679
https://notcve.org/view.php?id=CVE-2016-9679
Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code by overwriting a function pointer. Citrix Provisioning Services en versiones anteriores a 7.12 permite a atacantes ejecutar código arbitrario sobrescribiendo un puntero de función. • http://www.securityfocus.com/bid/95620 http://www.securitytracker.com/id/1037625 https://support.citrix.com/article/CTX219580 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2016-9678
https://notcve.org/view.php?id=CVE-2016-9678
Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. Vulnerabilidad de uso después de liberación de memoria en Citrix Provisioning Services en versiones anteriores a 7.12 permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • http://www.securityfocus.com/bid/95620 http://www.securitytracker.com/id/1037625 https://support.citrix.com/article/CTX219580 • CWE-416: Use After Free •