CVE-2016-7093
- Source
- https://cve.org/CVERecord?id=CVE-2016-7093
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7093.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2016-7093
- Downstream
- Related
- Published
- 2016-09-21T14:25:24.097Z
- Modified
- 2026-03-15T22:10:39.332113Z
- Severity
-
- 8.2 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
- References
-
- http://www.securityfocus.com/bid/92865
- https://security.gentoo.org/glsa/201611-09
- http://support.citrix.com/article/CTX216071
- http://www.securitytracker.com/id/1036752
- http://xenbits.xen.org/xsa/xsa186-0001-x86-emulate-Correct-boundary-interactions-of-emulate.patch
- http://xenbits.xen.org/xsa/advisory-186.html
Affected packages
Git /
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "4.5.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "4.6.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "4.7.0"
}
]
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7093.json"