CVE-2020-11741

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Xen versions through 4.13.x

Description An issue in xenoprof allows guest OS users with active profiling to obtain sensitive information about other guests, cause a denial of service, or possibly gain privileges. The xenoprof code uses the standard Xen shared ring structure for guests with active profiling enabled by the administrator. However, it trusts the guest not to modify buffer size information or head/tail pointers in unexpected ways, which can lead to a host crash (DoS). Privilege escalation cannot be ruled out.

Recommendations For versions through 4.13.x, consider disabling active profiling for guest OS users until a patch is available to prevent potential exploitation. Restrict access to the xenoprof code to minimize the risk of denial of service or privilege escalation.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-909

Related Identifiers

CVE-2020-11741

DSA-4723-1

OPENSUSE-SU-2020:0599-1

OPENSUSE-SU-2020_0599-1

SUSE-SU-2020:1124-1

SUSE-SU-2020:1138-1

SUSE-SU-2020:1139-1

SUSE-SU-2020:14444-1

SUSE-SU-2020:14448-1

SUSE-SU-2020:1630-1

SUSE-SU-2020:1634-1

SUSE-SU-2020:2234-1

SUSE-SU-2020_1630-1

SUSE-SU-2020_1634-1

USN-5617-1

Affected Products

Linuxmint

Suse

Ubuntu

Xen

CVE-2020-11741

Weakness Enumeration

Related Identifiers

Affected Products

References · 106