Home

CVE-2016-6258

Description

The PV pagetable code in arch/x86/mm.c in Xen 4.7.x and earlier allows local 32-bit PV guest OS administrators to gain host OS privileges by leveraging fast-paths for updating pagetable entries.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.112

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Citrix XenCenter 6.0Windows
Multiple Vulnerabilities are affected in Citrix XenCenter 6.0.2Windows
Vulnerabilities CVE-2016-6258,CVE-2016-6259 are affected in Citrix XenCenter 6.1Windows
Multiple Vulnerabilities are affected in Citrix XenCenter 6.2.0Windows
Vulnerabilities CVE-2016-6258,CVE-2016-6259 are affected in Citrix XenCenter 6.5.0-sp1Windows
Multiple Vulnerabilities are affected in Citrix XenCenter 7.0Windows
Improper Access Control Vulnerability (CVE-2016-6258)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234