Vulnerability Description
The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.
CVSS Score
7.8
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Citrix | Xenserver | 6.0.2 |
| Xen | Xen | All versions |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/94471Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037340Third Party AdvisoryVDB Entry
- http://xenbits.xen.org/xsa/advisory-191.htmlPatchVendor Advisory
- https://security.gentoo.org/glsa/201612-56
- https://support.citrix.com/article/CTX218775PatchThird Party Advisory
- http://www.securityfocus.com/bid/94471Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037340Third Party AdvisoryVDB Entry
- http://xenbits.xen.org/xsa/advisory-191.htmlPatchVendor Advisory
- https://security.gentoo.org/glsa/201612-56
- https://support.citrix.com/article/CTX218775PatchThird Party Advisory
FAQ
What is CVE-2016-9386?
CVE-2016-9386 is a vulnerability with a CVSS score of 7.8 (HIGH). The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/...
How severe is CVE-2016-9386?
CVE-2016-9386 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-9386?
Check the references section above for vendor advisories and patch information. Affected products include: Citrix Xenserver, Xen Xen.