Denial of Service Vulnerability in Xen due to PCID and Shadow-Pagetable Switching Incompatibility

Denial of Service Vulnerability in Xen due to PCID and Shadow-Pagetable Switching Incompatibility

CVE-2019-17348 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users to cause a denial of service because of an incompatibility between Process Context Identifiers (PCID) and shadow-pagetable switching.

Learn more about our User Device Pen Test.