CVE-2015-2752 - CERT CVE

  1. CVE-2015-2752

ID CVE-2015-2752
Sažetak The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request to the device model (qemu-dm).
Reference
CVSS
Base: 4.9
Impact: 6.9
Exploitability:3.9
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE COMPLETE
CVSS vektor AV:L/AC:L/Au:N/C:N/I:N/A:C
Zadnje važnije ažuriranje 30-10-2018 - 16:26
Objavljeno 01-04-2015 - 14:59