CVE-2017-10916

moderate-risk
Published 2017-07-05

The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions (MPX) and Protection Key (PKU) features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220.

Do I need to act?

-
0.39% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (13)

Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen
Xen

Affected Vendors

Xen

References (10)

http://www.debian.org/security/2017/dsa-3969
http://www.securityfocus.com/bid/99167
http://www.securitytracker.com/id/1038730
https://security.gentoo.org/glsa/201708-03
Mailing List https://xenbits.xen.org/xsa/advisory-220.html
http://www.debian.org/security/2017/dsa-3969
http://www.securityfocus.com/bid/99167
http://www.securitytracker.com/id/1038730
https://security.gentoo.org/glsa/201708-03
Mailing List https://xenbits.xen.org/xsa/advisory-220.html
44
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 1/34 · Minimal
Exposure 17/34 · Moderate