Main Vulnerability Database Vulnerabilities #VU12288

#VU12288 Error handling in Xen - CVE-2018-10471

Published: April 30, 2018 / Updated: July 28, 2020

Vulnerability identifier: #VU12288

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-10471

CWE-ID:

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
Xen

Software vendor:
Xen Project

Description

The vulnerability allows an adjacent attacker to cause DoS condition on the target system.

The weakness exists due to error handling flaw. An adjacent attacker can cause the service to crash.

Install update from vendor's website.