VDB
CVE-2011-3131
CVE-2011-3131
PUBLISHED
CVSS 4.599999904632568 MEDIUM
Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.
EPSS 0.05% · 17.3th percentile
Risk Scores
CVSS 2.0
4.599999904632568
EPSS Score
0.05%
17.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| xen | xen | 0 |
| n/a | n/a | n/a |
Exploit Intelligence
- http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a (nist-nvd)
- DSA-2582 (circl)
- 45622 (circl)
- [Xen-devel] 20110812 Xen Advisory 5 (CVE-2011-3131) IOMMU fault livelock (circl)
- 51468 (circl)
- [Xen-devel] 20110616 IOMMU faults (circl)
- 49146 (circl)
Timeline
- Dec 13, 2012 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a url
- DSA-2582 vendor-advisory
- 45622 third-party-advisory
- [Xen-devel] 20110812 Xen Advisory 5 (CVE-2011-3131) IOMMU fault livelock mailing-list
- 51468 third-party-advisory
- [Xen-devel] 20110616 IOMMU faults mailing-list
- 49146 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2011-3131 advisory