CVE-2014-7188 — XEN vulnerability

CWE-3998 documents6 sources

Severity

8.3HIGHNVD

EPSS

2.4%

top 15.07%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedOct 2

Latest updateMay 14

Description

The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other guests via unspecified vectors.

CVSS vector

AV:A/AC:L/C:C/I:C/A:CExploitability: 6.5 | Impact: 10.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.4.1-3 (bookworm)

▶Debianxen/xen< 4.4.1-3+3

▶NVDxen/xen15 versions+14

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-7j5g-cw5c-pc6m: The hvm_msr_read_intercept function in arch/x86/hvm/hvm↗2022-05-14

▶

OSV

CVE-2014-7188: The hvm_msr_read_intercept function in arch/x86/hvm/hvm↗2014-10-02

▶

📋Vendor Advisories

Red Hat

kernel: xen: Improper MSR range used for x2APIC emulation (xsa108)↗2014-10-01

▶

Debian

CVE-2014-7188: xen - The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4...↗2014

▶

💬Community

Bugzilla

CVE-2014-7188 kernel: xen: Improper MSR range used for x2APIC emulation (xsa108) [fedora-all]↗2014-10-01

▶

Bugzilla

CVE-2014-7188 kernel: xen: Improper MSR range used for x2APIC emulation (xsa108)↗2014-09-19

▶

Bugzilla

CVE-2014-4336 cups-filters: incomplete fix for CVE-2014-2707↗2014-04-25

▶