CVE-2020-29480 — Missing Authorization in XEN

CWE-862 — Missing Authorization CWE-203 — Observable Discrepancy5 documents5 sources

Severity

2.3LOWNVD

EPSS

0.1%

top 80.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN Debian Linux +1 more

Timeline

PublishedDec 15

Latest updateMay 24

Description

An issue was discovered in Xen through 4.14.x. Neither xenstore implementation does any permission checks when reporting a xenstore watch event. A guest administrator can watch the root xenstored node, which will cause notifications for every created, modified, and deleted key. A guest administrator can also use the special watches, which will cause a notification every time a domain is created and destroyed. Data may include: number, type, and domids of other VMs; existence and domids of driver…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:NExploitability: 0.8 | Impact: 1.4

Affected Packages3 packages

▶debiandebian/xen< xen 4.14.0+88-g1d1d1f5391-1 (bookworm)

▶Debianxen/xen< 4.14.0+88-g1d1d1f5391-1+3

▶NVDxen/xen4.14.0

Also affects: Debian Linux 10.0, Fedora 32, 33

Patches

Patch: xenbits.xenproject.org ↗Patch: xenbits.xenproject.org ↗

🔴Vulnerability Details

GHSA

GHSA-h88c-j84g-842h: An issue was discovered in Xen through 4↗2022-05-24

▶

OSV

CVE-2020-29480: An issue was discovered in Xen through 4↗2020-12-15

▶

📋Vendor Advisories

Debian

CVE-2020-29480: xen - An issue was discovered in Xen through 4.14.x. Neither xenstore implementation d...↗2020

▶

📄Research Papers

arXiv

DuVisor: a User-level Hypervisor Through Delegated Virtualization↗2022-01-24

▶