CVE-2025-58148 — Out-of-bounds Read in XEN
Severity
7.5HIGHNVD
EPSS
0.0%
top 92.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Timeline
PublishedOct 31
Description
[This CNA information record relates to multiple CVEs; the
text explains which aspects/vulnerabilities correspond to which CVE.]
Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in
one of three formats. Xen has boundary checking bugs with all three
formats, which can cause out-of-bounds reads and writes while processing
the inputs.
* CVE-2025-58147. Hypercalls using the HV_VP_SET Sparse format can
cause vpmask_set() to write out of bounds when converting the bitmap
to Xen's…
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6
Patches
🔴Vulnerability Details
8OSV▶
CVE-2025-58147: [This CNA information record relates to multiple CVEs; the
text explains which aspects/vulnerabilities correspond to which CVE↗2025-10-31
GHSA▶
GHSA-64c5-3xxf-ccjp: [This CNA information record relates to multiple CVEs; the
text explains which aspects/vulnerabilities correspond to which CVE↗2025-10-31
OSV▶
CVE-2025-58147: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE↗2025-10-31
OSV▶
CVE-2025-58148: [This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE↗2025-10-31
GHSA▶
GHSA-p42f-m78x-844r: [This CNA information record relates to multiple CVEs; the
text explains which aspects/vulnerabilities correspond to which CVE↗2025-10-31