CVE-2018-18883 — NULL Pointer Dereference in XEN

CWE-476 — NULL Pointer Dereference CWE-250 — Execution with Unnecessary Privileges7 documents6 sources

Severity

8.8HIGHNVD

EPSS

0.2%

top 61.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedNov 1

Latest updateMay 14

Description

An issue was discovered in Xen 4.9.x through 4.11.x, on Intel x86 platforms, allowing x86 HVM and PVH guests to cause a host OS denial of service (NULL pointer dereference) or possibly have unspecified other impact because nested VT-x is not properly restricted.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 2.0 | Impact: 6.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.11.1-1 (bookworm)

▶Debianxen/xen< 4.11.1-1+3

▶NVDxen/xen4.9.0 — 4.11.0

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-7xx2-fw34-h693: An issue was discovered in Xen 4↗2022-05-14

▶

OSV

CVE-2018-18883: An issue was discovered in Xen 4↗2018-11-01

▶

📋Vendor Advisories

Red Hat

xen: Nested VT-x usable even when disabled↗2018-10-24

▶

Debian

CVE-2018-18883: xen - An issue was discovered in Xen 4.9.x through 4.11.x, on Intel x86 platforms, all...↗2018

▶

💬Community

Bugzilla

CVE-2018-18883 xen: Nested VT-x usable even when disabled↗2018-10-25

▶

Bugzilla

CVE-2018-18883 xen: Nested VT-x usable even when disabled [fedora-all]↗2018-10-25

▶