cbcvebase.
CVE-2011-1898
published 2011-08-12

CVE-2011-1898: Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to…

PriorityP431high7.4CVSS 2.0
AVAACMAuSCCICAC
EPSS
0.85%
53.6th percentile
Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to generate MSI interrupts by writing to the interrupt injection registers."

Affected

8 ranges
VendorProductVersion rangeFixed in
citrixxen
citrixxen
citrixxen
debianxen< xen 4.1.1-1 (bookworm)xen 4.1.1-1 (bookworm)
xenxen>= 0 < 4.1.1-14.1.1-1
xenxen>= 0 < 4.1.1-14.1.1-1
xenxen>= 0 < 4.1.1-14.1.1-1
xenxen>= 0 < 4.1.1-14.1.1-1

CVSS provenance

nvdv2.07.4HIGHAV:A/AC:M/Au:S/C:C/I:C/A:C
osv7.4HIGH
vendor_debian7.4HIGH
vendor_redhat7.4HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.