Vulnerability Details : CVE-2011-4347
The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resources, which allows host OS users to assign PCI devices and cause a denial of service (host OS crash) via a KVM_ASSIGN_PCI_DEVICE operation.
Vulnerability category: Denial of service
Products affected by CVE-2011-4347
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.8:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.7:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.6:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.5:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:3.1.3:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-4347
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 12 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-4347
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.0
|
MEDIUM | AV:L/AC:H/Au:N/C:N/I:N/A:C |
1.9
|
6.9
|
NIST |
CWE ids for CVE-2011-4347
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-4347
-
https://bugzilla.redhat.com/show_bug.cgi?id=756084
756084 – (CVE-2011-4347) CVE-2011-4347 kernel: kvm: device assignment DoSVendor Advisory
-
http://www.openwall.com/lists/oss-security/2011/11/24/7
oss-security - Re: CVE request -- kernel: kvm: device assignment DoS
-
https://github.com/torvalds/linux/commit/c4e7f9022e506c6635a5037713c37118e23193e4
KVM: Device assignment permission checks · torvalds/linux@c4e7f90 · GitHub
-
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1.10
Jump to