CVE-2014-8867 : The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking

The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) via unspecified vectors.

Published 2014-12-01 15:59:10

Updated 2018-10-30 16:27:36

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2014-8867

Probability of exploitation activity in the next 30 days: 0.06%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 25 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-8867

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

CWE ids for CVE-2014-8867

CWE-17

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-8867

http://xenbits.xenproject.org/xsa/advisory-112.html

XSA-112 - Xen Security Advisories
Patch;Vendor Advisory
http://support.citrix.com/article/CTX201794

Citrix NetScaler Service Delivery Appliance Multiple Security Updates

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html

[security-announce] openSUSE-SU-2015:0226-1: important: Security update
Third Party Advisory

CVEs referencing this url
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

Juniper Networks - 2015-10 Security Bulletin: CTPView: Multiple Vulnerabilities in CTPView

CVEs referencing this url
https://security.gentoo.org/glsa/201504-04

Xen: Multiple vulnerabilities (GLSA 201504-04) — Gentoo security

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3140

Debian -- Security Information -- DSA-3140-1 xen
Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html

[security-announce] openSUSE-SU-2015:0256-1: important: Security update
Third Party Advisory

CVEs referencing this url
http://support.citrix.com/article/CTX200288

Citrix XenServer Multiple Security Updates

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2015-0783.html

RHSA-2015:0783 - Security Advisory - Red Hat Customer Portal
Third Party Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/71331

Xen CVE-2014-8867 Denial of Service Vulnerability
Third Party Advisory;VDB Entry

Products affected by CVE-2014-8867

Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux » Version: 5.0
cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
Matching versions
Redhat » Enterprise Linux Desktop » Version: 5.0
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
Matching versions
XEN » XEN
Versions up to, including, (<=) 3.2.0
cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*
Matching versions
XEN » XEN » Version: 3.2.1
cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*
Matching versions
XEN » XEN » Version: 3.2.2
cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*
Matching versions
XEN » XEN » Version: 3.2.3
cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*
Matching versions
XEN » XEN » Version: 4.4.0
cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*
Matching versions
XEN » XEN » Version: 4.4.1
cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.2
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-8867

Exploit prediction scoring system (EPSS) score for CVE-2014-8867

CVSS scores for CVE-2014-8867

CWE ids for CVE-2014-8867

References for CVE-2014-8867

Products affected by CVE-2014-8867