CVE-2016-7092 - CERT CVE

  1. CVE-2016-7092

ID CVE-2016-7092
Sažetak The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables.
Reference
CVSS
Base: 6.8
Impact: 10.0
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
LOCAL LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE COMPLETE COMPLETE
CVSS vektor AV:L/AC:L/Au:S/C:C/I:C/A:C
Zadnje važnije ažuriranje 01-07-2017 - 01:30
Objavljeno 21-09-2016 - 14:25