CVE-2012-4538

Medium CVSS 4.9

Overview

The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not properly check the pagetable state when running on shadow pagetables, which allows a local HVM guest OS to cause a denial of service (hypervisor crash) via unspecified vectors.

CWE: CWE-20 Published: 2012-11-24T20:55:03.603

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 4.9 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags