CVE-2016-7093
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2016-7093
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7093.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-7093
- Downstream
- Related
- Published
- 2016-09-21T14:25:24Z
- Modified
- 2025-05-30T18:00:04Z
- Severity
-
- 8.2 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
- References
-
- http://support.citrix.com/article/CTX216071
- http://www.securitytracker.com/id/1036752
- http://xenbits.xen.org/xsa/advisory-186.html
- http://xenbits.xen.org/xsa/xsa186-0001-x86-emulate-Correct-boundary-interactions-of-emulate.patch
- https://security.gentoo.org/glsa/201611-09
- http://www.securityfocus.com/bid/92865