Vulnerability Description
XAPI open file limit DoS It is possible for an unauthenticated client on the network to cause XAPI to hit its file-descriptor limit. This causes XAPI to be unable to accept new requests for other (trusted) clients, and blocks XAPI from carrying out any tasks that require the opening of file descriptors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xen | Xapi | All versions |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2022/10/11/4Mailing ListPatchThird Party Advisory
- http://xenbits.xen.org/xsa/advisory-413.htmlPatchVendor Advisory
- https://security.gentoo.org/glsa/202402-07
- https://xenbits.xenproject.org/xsa/advisory-413.txtPatchVendor Advisory
- http://www.openwall.com/lists/oss-security/2022/10/11/4Mailing ListPatchThird Party Advisory
- http://xenbits.xen.org/xsa/advisory-413.htmlPatchVendor Advisory
- https://security.gentoo.org/glsa/202402-07
- https://xenbits.xenproject.org/xsa/advisory-413.txtPatchVendor Advisory
FAQ
What is CVE-2022-33749?
CVE-2022-33749 is a vulnerability with a CVSS score of 5.3 (MEDIUM). XAPI open file limit DoS It is possible for an unauthenticated client on the network to cause XAPI to hit its file-descriptor limit. This causes XAPI to be unable to accept new requests for other (tru...
How severe is CVE-2022-33749?
CVE-2022-33749 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-33749?
Check the references section above for vendor advisories and patch information. Affected products include: Xen Xapi.