Home > Vulnerability Database > CVE-2024-45819

Mend.io Vulnerability Database

CVE-2024-45819

Good to know:

Date: November 12, 2024

An issue was found in Xen project - libxl leaks data to PVH guests via ACPI tables. PVH guests have their ACPI tables constructed by the toolstack. The construction involves building the tables in local memory, which are then copied into guest memory. While actually used parts of the local memory are filled in correctly, excess space that is being allocated is left with its prior contents.

Language: C

Severity Score

9.1

Related Resources (3)

Url: https://nvd.nist.gov/vuln/detail/CVE-2024-45819

Url: https://seclists.org/oss-sec/2024/q4/80

Url: https://www.mend.io/vulnerability-database/CVE-2024-45819

Severity Score

9.1

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

Top Fix

Upgrade Version

Upgrade to version 0bfe567b58f1182889dea9207103fc9d00baf414

Learn More

CVSS v3.1

Base Score:	9.1
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2024-45819

Good to know:

Date: November 12, 2024

Language: C

Severity Score

Related Resources (3)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?