CVE-2023-5090

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 2

Advisories 18

NVD Status Modified

A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct access to host x2apic msrs when the guest resets its apic, potentially leading to a denial of service condition.

Weaknesses

CWE-755: Improper Handling of Exceptional Conditions

CVE Status: PUBLISHED
NVD Status: Modified
CNA: Red Hat, Inc.
Published Date: 2023-11-06 11:15:09
(10 months ago)
Updated Date: 2024-09-11 11:15:10
(5 days ago)

Affected Products

Linux

Linux Kernel

Redhat

Enterprise Linux

Configuration #1

	CPE23	Up To
Linux Kernel 6.5 and prior versions	cpe:2.3:o:linux:linux_kernel	<= 6.5
Linux Kernel 6.6 Rc1	cpe:2.3:o:linux:linux_kernel:6.6:rc1
Linux Kernel 6.6 Rc2	cpe:2.3:o:linux:linux_kernel:6.6:rc2
Linux Kernel 6.6 Rc3	cpe:2.3:o:linux:linux_kernel:6.6:rc3
Linux Kernel 6.6 Rc4	cpe:2.3:o:linux:linux_kernel:6.6:rc4
Linux Kernel 6.6 Rc5	cpe:2.3:o:linux:linux_kernel:6.6:rc5
Linux Kernel 6.6 Rc6	cpe:2.3:o:linux:linux_kernel:6.6:rc6

Configuration #2

		CPE23	From	Up To
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0
	Redhat Enterprise Linux 9.0	cpe:2.3:o:redhat:enterprise_linux:9.0