CVE-2017-7995

CWE-200 — Information Exposure7 documents7 sources

Severity

3.8LOW

EPSS

0.1%

top 72.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN XEN Novell Suse Linux Enterprise Point OF Sale Novell Suse Linux Enterprise Server +3 more

Timeline

PublishedMay 3

Latest updateMay 17

Description

Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device space memory reads, leading to information disclosure. This is an error in the get_user function. NOTE: the upstream Xen Project considers versions before 4.5.x to be EOL.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:NExploitability: 2.0 | Impact: 1.4

Affected Packages7 packages

▶Debianxen< 4.3.0-1+3

▶NVDxen/xen4.2.5

▶NVDsuse/manager2.1

▶NVDsuse/manager_proxy2.1

▶NVDsuse/openstack_cloud5

🔴Vulnerability Details

GHSA

GHSA-x43f-7h79-3278: Xen PV guest before Xen 4↗2022-05-17

▶

CVEList

CVE-2017-7995: Xen PV guest before Xen 4↗2017-05-03

▶

OSV

CVE-2017-7995: Xen PV guest before Xen 4↗2017-05-03

▶

📋Vendor Advisories

Red Hat

xen: Checks access permissions to MMIO ranges only after accessing them↗2017-04-13

▶

Debian

CVE-2017-7995: xen - Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after...↗2017

▶

💬Community

Bugzilla

CVE-2017-7995 xen: Checks access permissions to MMIO ranges only after accessing them↗2017-05-05

▶