CVE-2010-2619 — Citrix Xenserver vulnerability

5 documents5 sources

Severity

1.9LOWNVD

EPSS

0.1%

top 73.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Citrix Xenserver

Timeline

PublishedJul 2

Latest updateMay 17

Description

Citrix XenServer 5.0 Update 2 and earlier, and 5.5 Update 1 and earlier, when using a pvops kernel, allows guest users to cause a denial of service in the host via unspecified vectors that trigger "incorrectly set flags."

CVSS vector

AV:L/AC:M/C:N/I:N/A:PExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

▶NVDcitrix/xenserver5.0+1

Patches

Patch: support.citrix.com ↗Patch: support.citrix.com ↗

🔴Vulnerability Details

GHSA

GHSA-vhm9-7pj9-7x4x: Citrix XenServer 5↗2022-05-17

▶

CVEList

CVE-2010-2619: Citrix XenServer 5↗2010-07-02

▶

💥Exploits & PoCs

Exploit-DB

Samba 4.5.2 - Symlink Race Permits Opening Files Outside Share Directory↗2017-03-27

▶

📋Vendor Advisories

Citrix

CVE-2010-2619: Citrix XenServer 5.0 Update 2 and earlier, and 5.5 Update 1 and earlier, when using a pvops kernel, allows guest users to cause a denial of service in↗2010-07-02

▶