VDB

CISA-2026-23555

CISA-2026-23555 PUBLISHED CVSS 7.1 HIGH

Reported by XEN · Published March 23, 2026

Any guest issuing a Xenstore command accessing a node using the (illegal) node path "/local/domain/", will crash xenstored due to a clobbered error indicator in xenstored when verifying the node path. Note that the crash is forced via a failing assert() statement in xenstored. In case xenstored is being built with NDEBUG #defined, an unprivileged guest trying to access the node path "/local/domain/" will result in it no longer being serviced by xenstored, other guests (including dom0) will still be serviced, but xenstored will use up all cpu time it can get.

Risk Scores

CVSS 3.1
7.1
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Affected Products

VendorProductVersions
XenXenconsult Xen advisory XSA-481
XenXenconsult Xen advisory XSA-481, consult Xen advisory XSA-481

Timeline

  • Mar 23, 2026 CVE Published
  • Mar 23, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›