CVE-2016-6258 — Improper Access Control in Citrix Xenserver

CWE-284 — Improper Access Control8 documents7 sources

Severity

8.8HIGHNVD

EPSS

0.1%

top 70.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Citrix Xenserver

Timeline

PublishedAug 2

Latest updateMay 17

Description

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages3 packages

▶Debianxen/xen< 4.8.0~rc3-1+3

▶NVDxen/xen27 versions+26

▶NVDcitrix/xenserver6 versions+5

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-gh95-4f96-964p: The PV pagetable code in arch/x86/mm↗2022-05-17

▶

OSV

CVE-2016-6258: The PV pagetable code in arch/x86/mm↗2016-08-02

▶

CVEList

CVE-2016-6258: The PV pagetable code in arch/x86/mm↗2016-08-02

▶

📋Vendor Advisories

Red Hat

xen: x86: Privilege escalation in PV guests (XSA-182)↗2016-07-26

▶

Debian

CVE-2016-6258: xen - The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-...↗2016

▶

💬Community

Bugzilla

CVE-2016-6258 xsa182 xen: x86: Privilege escalation in PV guests (XSA-182) [fedora-all]↗2016-07-26

▶

Bugzilla

CVE-2016-6258 xsa182 xen: x86: Privilege escalation in PV guests (XSA-182)↗2016-07-13

▶