CVE-2011-3131 — Vulnetix

Try Vulnetix Request Demo

CVE-2011-3131 PUBLISHED CVSS 4.599999904632568 MEDIUM

Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.

EPSS 0.05% · 17.0th percentile

Risk Scores

CVSS v2.0

4.599999904632568

EPSS Score

0.05%

17.0th percentile

Affected Products

Vendor	Product	Versions
xen	xen	0
n/a	n/a	n/a

Timeline

Dec 13, 2012 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a url
DSA-2582 vendor-advisory
45622 third-party-advisory
[Xen-devel] 20110812 Xen Advisory 5 (CVE-2011-3131) IOMMU fault livelock mailing-list
51468 third-party-advisory
[Xen-devel] 20110616 IOMMU faults mailing-list
49146 vdb
https://nvd.nist.gov/vuln/detail/CVE-2011-3131 advisory

Open in Interactive Console →