Xen · Xen · CVE-2013-3495
**Name of the Vulnerable Software and Affected Versions**
Xen versions 3.3.x through 4.3.x
**Description**
The issue allows local guests to cause a denial of service, resulting in a kernel panic. This is achieved by sending a malformed Message Signaled Interrupt (MSI) from a PCI device capable of bus mastering, which triggers a System Error Reporting (SERR) Non-Maskable Interrupt (NMI).
**Recommendations**
For Xen versions 3.3.x through 4.3.x, consider disabling the Interrupt Remapping engine as a temporary workaround until a patch is available. Restrict access to PCI devices that are bus mastering capable to minimize the risk of exploitation.