{"alias":[],"description":"The paging_invlpg function in include\/asm-x86\/paging.h in Xen 3.3.x through 4.6.x, when using shadow mode paging or nested virtualization is enabled, allows local HVM guest users to cause a denial of service (host crash) via a non-canonical guest address in an INVVPID instruction, which triggers a hypervisor bug check.","epss":{"percentile":"0.53029","score":"0.002970"},"id":"CVE-2016-1571","metrics":{"cvss2":{"ac_insuf_info":0,"access_complexity":"MEDIUM","access_vector":"LOCAL","authentication":"NONE","availability_impact":"COMPLETE","base_score":4.7,"base_severity":"MEDIUM","confidentiality_impact":"NONE","exploitability_score":3.4,"impact_score":6.9,"integrity_impact":"NONE","obtain_all_privilege":0,"obtain_other_privilege":0,"obtain_user_privilege":0,"user_interaction_required":0,"vector_string":"AV:L\/AC:M\/Au:N\/C:N\/I:N\/A:C","version":"2.0"},"cvss3":{"attack_complexity":"HIGH","attack_vector":"NETWORK","availability_impact":"HIGH","base_score":6.3,"base_severity":"MEDIUM","confidentiality_impact":"NONE","exploitability_score":1.8,"impact_score":4.0,"integrity_impact":"NONE","privileges_required":"LOW","scope":"CHANGED","user_interaction":"NONE","vector_string":"CVSS:3.0\/AV:N\/AC:H\/PR:L\/UI:N\/S:C\/C:N\/I:N\/A:H","version":"3.0"}},"modified":"2026-05-06T22:30:45","nvd_status":"Modified","published":"2016-01-22T15:59:06","score":6.3,"severity":"MEDIUM","source":"cve@mitre.org","status":"PUBLISHED","weaknesses":[{"id":"CWE-17","name":"DEPRECATED: Code","type":"category"}]}