Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2012-3496

XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when translating paging mode is not used, allows local PV OS guest kernels to cause a denial of service (BUG triggered and host crash) via invalid flags such as MEMF_populate_on_demand.

  • Published: Nov 23, 2012
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-3496
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.7
  • AV:L/AC:M/Au:N/C:N/I:N/A:C

CWEs:

OWASP TOP 10:

Software From Fixed in
citrix / xenserver - 6.0.2.x
xen / xen 4.0.0 4.0.0.x
xen / xen 4.2.0 4.2.0.x
xen / xen 4.1.0 4.1.0.x