VDB
WID-SEC-W-2024-0281
WID-SEC-W-2024-0281
PUBLISHED
CVSS 8.699999809265137 HIGH
Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) für die darauf laufenden Systeme (Domains) paravirtualisiert.
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE Linux | ||
| Open Source Xen Xen 4.12.x | ||
| Open Source Xen Xen 4.15.x | ||
| Open Source Xen Xen 4.14.x | ||
| Citrix Systems Hypervisor | ||
| Open Source Xen Xen 4.13.x | ||
| Oracle VM | ||
| Debian Linux | ||
| Gentoo Linux |
Timeline
- Nov 23, 2021 CVE Published
- Feb 4, 2024 CVE Updated
- Apr 30, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2024-0281.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0281 advisory
- https://xenbits.xen.org/xsa/advisory-385.html url
- https://xenbits.xen.org/xsa/advisory-388.html url
- https://xenbits.xen.org/xsa/advisory-389.html url
- https://xenbits.xen.org/xsa/advisory-387.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-November/009778.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009794.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009783.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009788.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009799.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009796.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009826.html url
- https://www.debian.org/security/2021/dsa-5017 url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009870.html url
- https://lists.suse.com/pipermail/sle-security-updates/2021-December/009874.html url
- https://oss.oracle.com/pipermail/oraclevm-errata/2022-January/001044.html url
- https://oss.oracle.com/pipermail/oraclevm-errata/2022-January/001041.html url
- https://support.citrix.com/article/CTX335432 url
- https://security.gentoo.org/glsa/202402-07 url