XEN : Security Vulnerabilities, CVEs, Published In 2008 CVSS score >= 1
qemu-dm.debug in Xen 3.2.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/args temporary file.
Max CVSS
6.9
EPSS Score
0.04%
Published
2008-11-07
Updated
2017-09-29
Heap-based buffer overflow in the flask_security_label function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users (domU) to execute arbitrary code via the flask_op hypercall.
Max CVSS
6.8
EPSS Score
0.49%
Published
2008-08-14
Updated
2017-08-08
2 vulnerabilities found