xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vi_pci_read(). This vulnerability allows attackers to cause a Denial of Service via unspecified vectors.
References
Link | Resource |
---|---|
https://awxylitol.github.io/2022/07/21/disclose-three-bugs-in-xhyve.html | Exploit Third Party Advisory |
https://awxylitol.github.io/2022/07/21/disclose-three-bugs-in-xhyve.html | Exploit Third Party Advisory |
Configurations
History
21 Nov 2024, 07:13
Type | Values Removed | Values Added |
---|---|---|
References | () https://awxylitol.github.io/2022/07/21/disclose-three-bugs-in-xhyve.html - Exploit, Third Party Advisory |
12 Sep 2022, 19:34
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://awxylitol.github.io/2022/07/21/disclose-three-bugs-in-xhyve.html - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:xhyve_project:xhyve:2021-10-02:*:*:*:*:*:*:* | |
CWE | CWE-476 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
07 Sep 2022, 17:48
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-07 17:15
Updated : 2024-11-21 07:13
NVD link : CVE-2022-36661
Mitre link : CVE-2022-36661
CVE.ORG link : CVE-2022-36661
JSON object : View
Products Affected
xhyve_project
- xhyve
CWE
CWE-476
NULL Pointer Dereference