Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2013-4551

Date: November 15, 2013

Xen 4.2.x and 4.3.x, when nested virtualization is disabled, does not properly check the emulation paths for (1) VMLAUNCH and (2) VMRESUME, which allows local HVM guest users to cause a denial of service (host crash) via unspecified vectors related to "guest VMX instruction execution."

Language: C

Severity Score

Related Resources (9)

http://www.securityfocus.com/bid/63625
https://nvd.nist.gov/vuln/detail/CVE-2013-4551
http://secunia.com/advisories/55398
http://www.openwall.com/lists/oss-security/2013/11/11/1
http://www.securitytracker.com/id/1029313
http://security.gentoo.org/glsa/glsa-201407-03.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/88649
http://lists.opensuse.org/opensuse-updates/2013-12/msg00059.html
https://www.mend.io/vulnerability-database/CVE-2013-4551

Severity Score

Weakness Type (CWE)

Input Validation

CWE-20

CVSS v3.1

Base Score:
Attack Vector (AV): ADJACENT_NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): ADJACENT
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): COMPLETE
Additional information:

Do you need more information?

Contact Us