Denial of Service Vulnerability in Xen 4.4.x and Earlier with Large Number of VCPUs

Denial of Service Vulnerability in Xen 4.4.x and Earlier with Large Number of VCPUs

CVE-2014-9066 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:N/A:C

Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability than CVE-2014-9065.

Learn more about our User Device Pen Test.