Linux : Security Vulnerabilities, CVEs, Published In June 2016 (Code Execution)
arch/x86/kvm/vmx.c in the Linux kernel through 4.6.3 mishandles the APICv on/off state, which allows guest OS users to obtain direct APIC MSR access on the host OS, and consequently cause a denial of service (host OS crash) or possibly execute arbitrary code on the host OS, via x2APIC mode.
Max CVSS
7.8
EPSS Score
0.06%
Published
2016-06-27
Updated
2023-01-17
1 vulnerabilities found