1. Home
  2. Vulnerabilities
  3. CVE-2015-8550

CVE-2015-8550

CVSS v3.0 8.2 (High)
82% Progress
CVSS v2.0 5.7 (Medium)
57% Progress
EPSS 0.07 % (30th)
0.07% Progress
Affected Products 2
Advisories 28
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service (host OS crash) or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability.

Weaknesses
CWE-284
Improper Access Control
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2016-04-14 14:59:04
(8 years ago)
Updated Date
2017-11-04 01:29:12
(6 years ago)

Affected Products

Novell

Xen

Configuration #1

    CPE23 From Up To
  Xen cpe:2.3:o:xen:xen:-

Configuration #2

    CPE23 From Up To
  Novell Suse Linux Enterprise Real Time Extension 12 SP1 cpe:2.3:o:novell:suse_linux_enterprise_real_time_extension:12:sp1