// For flags

CVE-2012-4538

Gentoo Linux Security Advisory 201309-24

Severity Score

5.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not properly check the pagetable state when running on shadow pagetables, which allows a local HVM guest OS to cause a denial of service (hypervisor crash) via unspecified vectors.

La llamada HVMOP_pagetable_dying en Xen v4.0, v4.1, y v4.2 no comprueba correctamente el estado "pagetable" cuando se ejecuta en "shadow pagetables", lo que permite a un sistema operativo HVM de invitado causar una denegación de servicio (caída del hipervisor) a través de vectores no especificados.

Multiple vulnerabilities have been found in Xen, allowing attackers on a Xen Virtual Machine to execute arbitrary code, cause Denial of Service, or gain access to data on the host. Versions less than 4.2.2-r1 are affected.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2012-08-21 CVE Reserved
  • 2012-11-24 CVE Published
  • 2024-08-06 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
References (21)
URL Tag Source
http://osvdb.org/87306 Vdb Entry
http://secunia.com/advisories/51200 Third Party Advisory
http://secunia.com/advisories/51324 Third Party Advisory
http://secunia.com/advisories/51352 Third Party Advisory
http://secunia.com/advisories/51413 Third Party Advisory
http://secunia.com/advisories/51468 Third Party Advisory
http://secunia.com/advisories/55082 Third Party Advisory
http://www.openwall.com/lists/oss-security/2012/11/13/3 Mailing List
http://www.securityfocus.com/bid/56498 Vdb Entry
http://www.securitytracker.com/id?1027762 Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/80025 Vdb Entry
URL Date SRC
URL Date SRC
URL Date SRC
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00008.html 2017-08-29
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00009.html 2017-08-29
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html 2017-08-29
http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html 2017-08-29
http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00001.html 2017-08-29
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html 2017-08-29
http://lists.xen.org/archives/html/xen-announce/2012-11/msg00004.html 2017-08-29
http://security.gentoo.org/glsa/glsa-201309-24.xml 2017-08-29
http://www.debian.org/security/2012/dsa-2582 2017-08-29
https://security.gentoo.org/glsa/201604-03 2017-08-29
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Xen
Search vendor "Xen"
 Xen
Search vendor "Xen" for product "Xen"
 4.0.0
Search vendor "Xen" for product "Xen" and version "4.0.0"
-
Affected
Xen
Search vendor "Xen"
 Xen
Search vendor "Xen" for product "Xen"
 4.1.0
Search vendor "Xen" for product "Xen" and version "4.1.0"
-
Affected
Xen
Search vendor "Xen"
 Xen
Search vendor "Xen" for product "Xen"
 4.2.0
Search vendor "Xen" for product "Xen" and version "4.2.0"
-
Affected