VDB
DEBIAN-CVE-2015-4103
DEBIAN-CVE-2015-4103
PUBLISHED
CVSS 6.900000095367432 MEDIUM
Xen 3.3.x through 4.5.x does not properly restrict write access to the host MSI message data field, which allows local x86 HVM guest administrators to cause a denial of service (host interrupt handling confusion) via vectors related to qemu and accessing spanning multiple fields.
Risk Scores
CVSS v4.0
6.900000095367432
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | qemu | 0, 0, 0 |
| Debian:12 | xen | 0, 0, 0 |
| Debian:14 | qemu | 0, 0, 0 |
| Debian:14 | xen | 0, 0, 0 |
| Debian:13 | xen | 0, 0, 0 |
| Debian:12 | qemu | 0, 0, 0 |
| Debian:13 | qemu | 0, 0, 0 |
| Debian:11 | xen | 0, 0, 0 |
Timeline
- Jun 3, 2015 CVE Published
- Apr 28, 2026 CVE Updated