CVE-2018-10981 : An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to

An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial of service (host OS infinite loop) in situations where a QEMU device model attempts to make invalid transitions between states of a request.

Published 2018-05-10 22:29:00

Updated 2019-10-03 00:03:26

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2018-10981

Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 9.0
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Matching versions
XEN » XEN
Versions up to, including, (<=) 4.10.1
cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-10981

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 19 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-10981

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.9	MEDIUM	AV:L/AC:L/Au:N/C:N/I:N/A:C	3.9	6.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
6.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H	2.0	4.0	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Changed Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2018-10981

CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')

The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-10981

https://xenbits.xen.org/xsa/advisory-262.html

XSA-262 - Xen Security Advisories
Patch;Vendor Advisory
http://openwall.com/lists/oss-security/2018/05/08/3

oss-security - Xen Security Advisory 262 - qemu may drive Xen into unbounded loop
Mailing List;Patch;Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/05/msg00015.html

[SECURITY] [DLA 1383-1] xen security update
Mailing List;Third Party Advisory

CVEs referencing this url
https://security.gentoo.org/glsa/201810-06

Xen: Multiple vulnerabilities (GLSA 201810-06) — Gentoo security
Third Party Advisory

CVEs referencing this url
https://lists.debian.org/debian-lts-announce/2018/10/msg00021.html

[SECURITY] [DLA 1559-1] xen security update
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.securityfocus.com/bid/104149

Xen CVE-2018-10981 Local Denial of Service Vulnerability
Third Party Advisory;VDB Entry
https://www.debian.org/security/2018/dsa-4201

Debian -- Security Information -- DSA-4201-1 xen
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-10981

Products affected by CVE-2018-10981

Exploit prediction scoring system (EPSS) score for CVE-2018-10981

CVSS scores for CVE-2018-10981

CWE ids for CVE-2018-10981

References for CVE-2018-10981