#VU8427 Privilege escalation in Xen


Published: 2017-09-14

Vulnerability identifier: #VU8427

Vulnerability risk: Low

CVSSv3.1: 7.7 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-14319

CWE-ID: CWE-264

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Xen
Server applications / Virtualization software

Vendor: Xen Project

Description
The vulnerability allows an adjacent attacker to gain elevated privileges or cause DoS condition on the host system.

The weakness exists due to a flaw in grant unmapping. A local attacker on an x86 PV guest system can gain elevated privileges on the host system or cause the hypervisor to crash.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Xen: 4.5.0 - 4.9.0

External links
http://xenbits.xen.org/xsa/advisory-234.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Debian update for xen
Privilege escalation in xen (Alpine package)
SUSE Linux update for xen
SUSE Linux update for xen
OpenSUSE Linux update for xen
OpenSUSE Linux update for xen
Multiple vulnerabilities in Xen
SUSE Linux update for xen