Software Detail

Software Informaton Top

Virtualization

Software Detail

Xen

Number Of NVD

431

CRITICAL

HIGH

133

MEDIUM

238

LOW

URL	https://xenproject.org/
Explanation	Since 2010, the Xen community has been developing and maintaining Xen as free software under the GPLv2 license. Xen is available for IA-32, x64, IA-64, and ARM architectures. Xen is available for IA-32, x64, IA-64, and ARM architectures. In a Xen system, the Xen hypervisor is the core software that runs at the lowest privilege level [2]. The Xen hypervisor hierarchy supports one or more guest operating systems and performs scheduling for the physical CPU. the physical CPU. The first guest OS is referred to in Xen jargon as "domain 0" (dom0). It is, by default, automatically executed when the hypervisor boots, and has special administrative privileges and direct access to all physical hardware. The system administrator can log in to any additional guest OS through dom0. The management target at this time is called "domain U" (domU) in Xen jargon, where domain U means user domains. Excerpt from [https://ja.wikipedia.org/wiki/Xen_(virtualization software)].

Add Information URL

No	Type	Name	URL

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
1	Xen 4.19	4.19.0	July 29, 2024	July 29, 2024	0	1	0	0
2	Xen 4.18	4.18.3	Aug. 14, 2024	Nov. 17, 2023	0	1	0	0
3	Xen 4.17	4.17.5	Aug. 14, 2024	Dec. 14, 2022	0	4	3	1
4	Xen 4.16	4.16.6	March 27, 2024	Dec. 2, 2021	0	3	5	2
5	Xen 4.15	4.15.7	May 3, 2024	April 8, 2021	0	11	9	2
6	Xen 4.9	4.9.4			3	55	66	3
7	Xen 4.8	4.8.5			10	58	68	3
8	Xen 4.7	4.7.6			12	57	73	4
9	Xen 4.6	4.6.6			11	62	82	8
10	Xen 4.5	4.5.5			11	67	87	16
11	Xen 4.4	4.4.4			11	67	98	25
12	Xen 4.3	4.3.4			11	68	99	23
13	Xen 4.2	4.2.5			11	70	126	34
14	Xen 4.14	4.14.3			0	21	30	3
15	Xen 4.13	4.13.4			0	26	37	3
16	Xen 4.12	4.12.4			1	30	46	3
17	Xen 4.11	4.11.4			1	45	53	3
18	Xen 4.10	4.10.4			2	43	57	3
19	Xen 4.1	4.1.6.1			11	74	122	32
20	Xen 4.0	4.0.4			11	64	104	28
21	Xen 3.4	3.4.4			11	58	84	21
22	Xen 3.3	3.3.2			11	53	82	18
23	Xen 3.2	3.2.3			11	52	76	15
24	Xen 3.1	3.1.4			11	44	71	10
25	Xen 3.0	3.0.4			11	44	70	9

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or higher	or less	less than	Update date Published date	Show Affected	Exploit PoC Search
1	7.8 -	HIGH Local	The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in parallel with mapp…	CWE-362 Race Condition	CVE-2026-23558	cpe:2.3:o:xen:xen::	4.0.0			2026-05-20 03:55 2026-05-19	Show	GitHub Exploit DB Packet Storm

2	6.5 -	MEDIUM Local	Any guest can cause xenstored to crash by issuing a XS_RESET_WATCHES command within a transaction due to an assert() triggering. In case xenstored was built with NDEBUG #defined nothing bad will hap…	CWE-617 Reachable Assertion	CVE-2026-23557	cpe:2.3:o:xen:xen::	4.2.0			2026-05-20 03:56 2026-05-19	Show	GitHub Exploit DB Packet Storm

3	7.1 -	HIGH Local	Any guest issuing a Xenstore command accessing a node using the (illegal) node path "/local/domain/", will crash xenstored due to a clobbered error indicator in xenstored when verifying the node path…	CWE-617 Reachable Assertion	CVE-2026-23555	cpe:2.3:o:xen:xen::	4.18.0			2026-04-11 05:38 2026-03-23	Show	GitHub Exploit DB Packet Storm

4	7.8 -	HIGH Local	The Intel EPT paging code uses an optimization to defer flushing of any cached EPT state until the p2m lock is dropped, so that multiple modifications done under the same locked region only issue a s…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-23554	cpe:2.3:o:xen:xen::	4.17			2026-04-11 05:40 2026-03-23	Show	GitHub Exploit DB Packet Storm

5	5.5 -	MEDIUM Local	When a transaction is committed, C Xenstored will first check the quota is correct before attempting to commit any nodes. It would be possible that accounting is temporarily negative if a node has b…	CWE-476 NULL Pointer Dereference	CVE-2023-34323	cpe:2.3:o:xen:xen::			4.17.0	2024-11-21 17:07 2024-01-6	Show	GitHub Exploit DB Packet Storm

6	3.3 -	LOW Local	Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) ha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2023-46837	cpe:2.3:o:xen:xen::		4.16		2024-11-21 17:29 2024-01-6	Show	GitHub Exploit DB Packet Storm

7	5.5 -	MEDIUM Local	[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] AMD CPUs since ~2014 have extensions to normal x86 debugging functio…	NVD-CWE-noinfo	CVE-2023-34328	cpe:2.3:o:xen:xen::	4.5.0		4.14.0	2024-11-21 17:07 2024-01-6	Show	GitHub Exploit DB Packet Storm

8	3.3 -	LOW Local	Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) ha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2023-34321	cpe:2.3:o:xen:xen::		4.16		2024-11-21 17:07 2024-01-6	Show	GitHub Exploit DB Packet Storm

9	5.5 -	MEDIUM Local	[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] AMD CPUs since ~2014 have extensions to normal x86 debugging functio…	NVD-CWE-noinfo	CVE-2023-34327	cpe:2.3:o:xen:xen::	4.5.0			2024-11-21 17:07 2024-01-6	Show	GitHub Exploit DB Packet Storm

10	4.9 -	MEDIUM Network	Closing of an event channel in the Linux kernel can result in a deadlock. This happens when the close is being performed in parallel to an unrelated Xen console action and the handling of a Xen conso…	CWE-400 Uncontrolled Resource Consumption	CVE-2023-34324	cpe:2.3:o:xen:xen:-:*				2024-11-21 17:07 2024-01-6	Show	GitHub Exploit DB Packet Storm