Xen Vulnerability: AMD IOMMU Page-Table Entry Half-Update Denial of Service and Privilege Escalation

Xen Vulnerability: AMD IOMMU Page-Table Entry Half-Update Denial of Service and Privilege Escalation

CVE-2020-27670 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because an AMD IOMMU page-table entry can be half-updated.

Learn more about our User Device Pen Test.