CVE-2015-8341

{"id": "CVE-2015-8341", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-12-17T19:59:09.730", "references": [{"url": "http://www.debian.org/security/2016/dsa-3519", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1034389", "source": "cve@mitre.org"}, {"url": "http://xenbits.xen.org/xsa/advisory-160.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://security.gentoo.org/glsa/201604-03", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The libxl toolstack library in Xen 4.1.x through 4.6.x does not properly release mappings of files used as kernels and initial ramdisks when managing multiple domains in the same process, which allows attackers to cause a denial of service (memory and disk consumption) by starting domains."}, {"lang": "es", "value": "La librer\u00eda libxl toolstack en Xen 4.1.x hasta la versi\u00f3n 4.6.x no libera adecuadamente el mapeo de archivos utilizados como kernels y ramdisks iniciales cuando manejan m\u00faltiples dominios en el mismo proceso, lo que permite a atacantes causar una denegaci\u00f3n de servicio (consumo de memoria y disco) mediante dominios de arranque."}], "lastModified": "2017-07-01T01:29:25.203", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D532B60-C8DD-4A2F-9D05-E574D23EB754"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D83CA8B-8E49-45FA-8FAB-C15052474542"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27537DF5-7E0F-463F-BA87-46E329EE07AC"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3EA4F978-9145-4FE6-B4F9-15207E52C40A"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22A995FD-9B7F-4DF0-BECF-4B086E470F1E"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "219597E2-E2D7-4647-8A7C-688B96300158"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0C59417-493C-493A-9AB2-317F240BF387"}, {"criteria": "cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65E55950-EACA-4209-B2A1-E09026FC6006"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47640819-FC43-49ED-8A77-728C3D7255B3"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2448537F-87AD-45C1-9FB0-7A49CA31BD76"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E36B2265-70E1-413B-A7CF-79D39E9ADCFB"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37148A72-BE20-45C5-8589-2309ED84D08C"}, {"criteria": "cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB736B4C-325A-4B27-8C8A-15E60B8A8C82"}, {"criteria": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF948E6A-07BE-4C7D-8A98-002E89D35F4D"}, {"criteria": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0E23B94-1726-4F63-84BB-8D83FAB156D7"}, {"criteria": "cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB"}, {"criteria": "cpe:2.3:o:xen:xen:4.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F30B5EF5-0AE8-420B-A103-B1B25A372F09"}, {"criteria": "cpe:2.3:o:xen:xen:4.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F784EF07-DBEC-492A-A0F4-F9F7B2551A0B"}, {"criteria": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1044792C-D544-457C-9391-4F3B5BAB978D"}, {"criteria": "cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBD9AD01-50B7-4951-8A73-A6CF4801A487"}, {"criteria": "cpe:2.3:o:xen:xen:4.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89AA8FD5-E997-4F0D-AFB6-FFBE0073BA5D"}, {"criteria": "cpe:2.3:o:xen:xen:4.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75615D84-9CA1-456C-816D-768E37B074A4"}, {"criteria": "cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90CCECD0-C0F9-45A8-8699-64428637EBCA"}, {"criteria": "cpe:2.3:o:xen:xen:4.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0ED340C-6746-471E-9F2D-19D62D224B7A"}, {"criteria": "cpe:2.3:o:xen:xen:4.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99BD7C4F-DE4C-4508-B20D-46A94B616C5B"}, {"criteria": "cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B6F7CE9-C409-4D88-9A99-B21420633F45"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}