CVE-2012-6333 — Vulnetix

Try Vulnetix Request Demo

CVE-2012-6333 PUBLISHED CVSS 4.699999809265137 MEDIUM

Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM guest OS administrators to cause a denial of service (physical CPU consumption) via a large input.

EPSS 0.07% · 21.4th percentile

Risk Scores

CVSS v2.0

4.699999809265137

EPSS Score

0.07%

21.4th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
xen	xen	3.4.0, 3.4.1, 3.4.2

Timeline

Dec 13, 2012 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

55082 third-party-advisory
[oss-security] 20121203 Xen Security Advisory 27 (CVE-2012-5511) - several HVM operations do not validate the range of their inputs mailing-list
56796 vdb
http://support.citrix.com/article/CTX135777 url
GLSA-201309-24 vendor-advisory
51397 third-party-advisory
51486 third-party-advisory
51487 third-party-advisory
88129 vdb
SUSE-SU-2014:0446 vendor-advisory
SUSE-SU-2012:1615 vendor-advisory
xen-hvm-dos(80484) vdb
https://nvd.nist.gov/vuln/detail/CVE-2012-6333 advisory

Open in Interactive Console →