CVE-2015-2751

Published Apr 1, 2015

Last updated 3 months ago

CVSS info 7.1

Overview

Description: Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-17

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF948E6A-07BE-4C7D-8A98-002E89D35F4D"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0E23B94-1726-4F63-84BB-8D83FAB156D7"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1044792C-D544-457C-9391-4F3B5BAB978D"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.4.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF23B21B-594A-42E2-AF90-D5C4246B39A4"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.4.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A40F356B-4F5F-485D-A53A-8CE4629D6931"
          },
          {
            "criteria": "cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90CCECD0-C0F9-45A8-8699-64428637EBCA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF47C9F0-D8DA-4B55-89EB-9B2C9383ADB9"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56BDB5A0-0839-4A20-A003-B8CD56F48171"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References